Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us
What We Scan For
Family: Windows --> Category: infos

NOD32 File Processing Vulnerabilities Vulnerability Scan


Vulnerability Scan Summary
Checks version of NOD32's virus signature database

Detailed Explanation for this Vulnerability Test

Synopsis :

The remote Windows host has an application that is affected by
multiple issues.

Description :

The version of NOD32 installed on the remote host reportedly has a
heap overflows involving processing of '.doc' and '.cab' files and a
divide-by-zero flaw involving '.chm' files. A remote attacker may be
able to leverage the first flaw to execute code remotely or crash the
affected service.

See also :

http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0357.html
http://archives.neohapsis.com/archives/fulldisclosure/2006-12/0370.html
http://eset.com/support/updates.php (look for 'v.1.1743 (20061215)')

Solution :

Run NOD32's Update feature an ensure the version of the virus
signature database is at least 1.1743.

Threat Level:

High / CVSS Base Score : 8
(AV:R/AC:H/Au:NR/C:C/I:C/A:C/B:N)

Click HERE for more information and discussions on this network vulnerability scan.

VSS, LLC.

P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.