製品・ソフトウェアに関する情報

JVN脆弱性詳細

複数の F-Secure Anti-Virus 製品におけるバッファオーバーフローの脆弱性

タイトル	複数の F-Secure Anti-Virus 製品におけるバッファオーバーフローの脆弱性
概要	複数の F-Secure Anti-Virus 製品には、バッファオーバーフローの脆弱性が存在します。
想定される影響	第三者により、任意のコードを実行される可能性があります。
対策	ベンダ情報および参考情報を参照して適切な対策を実施してください。
公表日	2006年1月21日0:00
登録日	2014年3月11日17:43
最終更新日	2014年3月11日17:43

CVSS2.0 : 危険
スコア	7.5
ベクター	AV:N/AC:L/Au:N/C:P/I:P/A:P

影響を受けるシステム

エフ・セキュア

F-Secure Anti-Virus for Linux Servers 4.64 およびそれ以前

F-Secure Anti-Virus for Windows Servers 5.52 およびそれ以前

F-Secure Internet Gatekeeper 6.42 およびそれ以前

F-Secure Internet Security 2004、2005 および 2006

solutions based on f-secure personal express 6.20

CVE (情報セキュリティ共通脆弱性識別子)

No	名前	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2006-0337	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0337
National Vulnerability Database (NVD)
2	CVE-2006-0337	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-0337

ベンダー情報

No	名前	URL
関連リンク
1	18529	http://secunia.com/advisories/18529
2	fsc-2006-1.shtml	http://www.f-secure.com/security/fsc-2006-1.shtml

変更履歴

No	変更内容	変更日
0	[2014年03月11日] 掲載	2018年2月17日10:37

NVD脆弱性情報

CVE-2006-0337

概要	Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.
公表日	2006年1月21日9:03
登録日	2021年1月29日15:30
最終更新日	2017年7月20日10:29

影響を受けるソフトウェアの構成

構成1	以上	以下	より上	未満
cpe:2.3:a:f-secure:f-secure_anti-virus:2.16::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.61::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.61::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.62::samba_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.64::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.64::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.0::linux_client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.0::linux_server_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.01::linux_client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.01::linux_server_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5::citrix_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.11::linux_client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.11::linux_server_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.40::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.43::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.44::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.51::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52::citrix_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.54::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.55::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.61::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.01::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.01::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.2::firewalls:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.2::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.21::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.30::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.30_sr1::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.31::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.40::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:2004:::::::*
cpe:2.3:a:f-secure:f-secure_anti-virus:2005:::::::*
cpe:2.3:a:f-secure:f-secure_anti-virus:2006:::::::*
cpe:2.3:a:f-secure:f-secure_internet_security:2004:::::::*
cpe:2.3:a:f-secure:f-secure_internet_security:2005:::::::*
cpe:2.3:a:f-secure:f-secure_internet_security:2006:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:2.06::linux:::::
cpe:2.3:a:f-secure:internet_gatekeeper:2.6::linux:::::
cpe:2.3:a:f-secure:internet_gatekeeper:2.14::linux:::::
cpe:2.3:a:f-secure:internet_gatekeeper:6.3:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.4:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.31:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.32:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.41:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.42:::::::*
cpe:2.3:a:f-secure:solutions_based_on_f-secure_personal_express:6.20:::::::*

構成1	以上	以下	より上	未満
cpe:2.3:a:f-secure:f-secure_anti-virus:2.16::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.61::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.61::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.62::samba_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.64::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.64::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.0::linux_client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.0::linux_server_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.01::linux_client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.01::linux_server_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5::citrix_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.11::linux_client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.11::linux_server_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.40::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.43::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.44::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.51::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52::citrix_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.54::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.55::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.61::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.01::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.01::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.2::firewalls:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.2::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.21::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.30::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.30_sr1::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.31::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.40::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:2004:::::::*
cpe:2.3:a:f-secure:f-secure_anti-virus:2005:::::::*
cpe:2.3:a:f-secure:f-secure_anti-virus:2006:::::::*
cpe:2.3:a:f-secure:f-secure_internet_security:2004:::::::*
cpe:2.3:a:f-secure:f-secure_internet_security:2005:::::::*
cpe:2.3:a:f-secure:f-secure_internet_security:2006:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:2.06::linux:::::
cpe:2.3:a:f-secure:internet_gatekeeper:2.6::linux:::::
cpe:2.3:a:f-secure:internet_gatekeeper:2.14::linux:::::
cpe:2.3:a:f-secure:internet_gatekeeper:6.3:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.4:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.31:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.32:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.41:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.42:::::::*
cpe:2.3:a:f-secure:solutions_based_on_f-secure_personal_express:6.20:::::::*

No	URL	refsource	タグ
1	http://secunia.com/advisories/18529	SECUNIA	Patch Vendor Advisory
2	http://securitytracker.com/id?1015507	SECTRACK
3	http://securitytracker.com/id?1015508	SECTRACK
4	http://securitytracker.com/id?1015509	SECTRACK
5	http://securitytracker.com/id?1015510	SECTRACK
6	http://www.ciac.org/ciac/bulletins/q-103.shtml	CIAC
7	http://www.f-secure.com/security/fsc-2006-1.shtml	CONFIRM	Patch Vendor Advisory
8	http://www.osvdb.org/22632	OSVDB
9	http://www.securityfocus.com/bid/16309	BID
10	http://www.vupen.com/english/advisories/2006/0257	VUPEN
11	https://exchange.xforce.ibmcloud.com/vulnerabilities/24198	XF