CyberSec.Space Logo
Back to CVE Browser

CVE-2005-2670

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.1730%
EPSS Percentile32.62th
PublishedAug 23, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Directory traversal vulnerability in HAURI Anti-Virus products including ViRobot Expert 4.0, Advanced Server, Linux Server 2.0, and LiveCall allows remote attackers to overwrite arbitrary files via ".." sequences in filenames contained in (1) ACE, (2) ARJ, (3) CAB, (4) LZH, (5) RAR, (6) TAR and (7) ZIP files.

Affected Platforms (CPE)

πŸ“¦
Hauri

Livecall

All versions
πŸ“¦
Hauri

Virobot Advanced Server

All versions
πŸ“¦
Hauri

Virobot Expert

= 4.0
πŸ“¦
Hauri

Virobot Linux Server

= 2.0

References & Advisories

πŸ”— http://secunia.com/advisories/15846
πŸ”— http://secunia.com/secunia_research/2005-24/advisory
πŸ”— http://securitytracker.com/id?1014740
πŸ”— http://www.globalhauri.com/html/download/down_unixpatch.html
πŸ”— http://www.securityfocus.com/bid/14606
πŸ”— http://secunia.com/advisories/15846
πŸ”— http://secunia.com/secunia_research/2005-24/advisory
πŸ”— http://securitytracker.com/id?1014740

Related Vulnerabilities

CVE-2005-27207.5

Stack-based buffer overflow in the ACE archive decompression library (vrAZace.dll) in HAURI Anti-Virus products including ViRobot ...

CVE-2005-47864.0

Buffer overflow in the archive decompression library (vrAZMain.dll 5.8.22.137), as used in HAURI anti-virus products including (1)...

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...