Back to search
CVE-2006-6627
Published: Dec 18, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Integer overflow in the packed PE file parsing implementation in BitDefender products before 20060829, including Antivirus, Antivirus Plus, Internet Security, Mail Protection for Enterprises, and Online Scanner; and BitDefender products for Microsoft ISA Server and Exchange 5.5 through 2003; allows remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow, aka the "cevakrnl.xmd vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
21610
vdb-entry
x_refsource_BID
1017389
vdb-entry
x_refsource_SECTRACK
2044
third-party-advisory
x_refsource_SREASON
http://www.bitdefender.com/KB323-en--cevakrnl.xmd-vulnerability.html
x_refsource_CONFIRM
20061215 BitDefender AV Packed PE File Parsing Engine Heap Overflow
mailing-list
x_refsource_FULLDISC
23415
third-party-advisory
x_refsource_SECUNIA
20061215 BitDefender AV Packed PE File Parsing Engine Heap Overflow
mailing-list
x_refsource_BUGTRAQ
ADV-2006-5040
vdb-entry
x_refsource_VUPEN
bitdefender-pefile-bo(30904)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now