Lucene search

[email protected]CVE-2006-6627

HistoryDec 18, 2006 - 11:28 a.m.

CVE-2006-6627

2006-12-1811:28:00

[email protected]

web.nvd.nist.gov

cve-2006-6627

bitdefender

integer overflow

pe file parsing

remote code execution

vulnerability

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.152 Low

EPSS

Percentile

95.9%

JSON

Integer overflow in the packed PE file parsing implementation in BitDefender products before 20060829, including Antivirus, Antivirus Plus, Internet Security, Mail Protection for Enterprises, and Online Scanner; and BitDefender products for Microsoft ISA Server and Exchange 5.5 through 2003; allows remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow, aka the “cevakrnl.xmd vulnerability.”

Affected configurations

NVD

Node

softwinbitdefenderMatchisa_server

softwinbitdefenderMatchms_exchange_5.5

softwinbitdefenderMatchms_exchange_2000

softwinbitdefenderMatchms_exchange_2003

softwinbitdefender_antivirus

softwinbitdefender_antivirusMatchplus

softwinbitdefender_internet_security

softwinbitdefender_mail_protectionMatchenterprises

softwinbitdefender_online_scanner

CPENameOperatorVersion
softwin:bitdefendersoftwin bitdefendereqisa_server
softwin:bitdefendersoftwin bitdefendereqms_exchange_5.5
softwin:bitdefendersoftwin bitdefendereqms_exchange_2000
softwin:bitdefendersoftwin bitdefendereqms_exchange_2003
softwin:bitdefender_antivirussoftwin bitdefender antiviruseq*
softwin:bitdefender_antivirussoftwin bitdefender antiviruseqplus
softwin:bitdefender_internet_securitysoftwin bitdefender internet securityeq*
softwin:bitdefender_mail_protectionsoftwin bitdefender mail protectioneqenterprises
softwin:bitdefender_online_scannersoftwin bitdefender online scannereq*

CPE	Name	Operator	Version
softwin:bitdefender	softwin bitdefender	eq	isa_server
softwin:bitdefender	softwin bitdefender	eq	ms_exchange_5.5
softwin:bitdefender	softwin bitdefender	eq	ms_exchange_2000
softwin:bitdefender	softwin bitdefender	eq	ms_exchange_2003
softwin:bitdefender_antivirus	softwin bitdefender antivirus	eq	*
softwin:bitdefender_antivirus	softwin bitdefender antivirus	eq	plus
softwin:bitdefender_internet_security	softwin bitdefender internet security	eq	*
softwin:bitdefender_mail_protection	softwin bitdefender mail protection	eq	enterprises
softwin:bitdefender_online_scanner	softwin bitdefender online scanner	eq	*

References

lists.grok.org.uk/pipermail/full-disclosure/2006-December/051319.html

secunia.com/advisories/23415

securityreason.com/securityalert/2044

securitytracker.com/id?1017389

www.bitdefender.com/KB323-en--cevakrnl.xmd-vulnerability.html

www.securityfocus.com/archive/1/454501/100/0/threaded

www.securityfocus.com/bid/21610

www.vupen.com/english/advisories/2006/5040

exchange.xforce.ibmcloud.com/vulnerabilities/30904

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.3 High

AI Score

Confidence

High

0.152 Low

EPSS

Percentile

95.9%

JSON

Related for CVE-2006-6627

cvelist1 nvd1