HTTP: Avast! Antivirus ACE File Handling Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Avast! Antivirus. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the service.
Extended Description
Stack-based buffer overflow in the ACE archive decompression library (vrAZace.dll) in HAURI Anti-Virus products including ViRobot Expert 4.0, Advanced Server, Linux Server 2.0, and LiveCall, when compressed file scanning is enabled, allows remote attackers to execute arbitrary code via an ACE archive that contains a file with a long filename.
Affected Products
Hauri livecall
Short Name
HTTP:STC:DL:ACE-BO
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
ACE Antivirus Avast! Buffer CVE-2005-2385 CVE-2005-2720 File Handling Overflow
Release Date
09/15/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Hauri
CVSS Score
7.5