CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2005-4786

MEDIUM
4.0
CVSS Severity Score
EPSS Score0.1620%
EPSS Percentile5.15th
Published2005年12月31日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in the archive decompression library (vrAZMain.dll 5.8.22.137), as used in HAURI anti-virus products including (1) ViRobot Expert 4.0, (2) ViRobot Advanced Server, and (3) HAURI LiveCall, allows user-assisted attackers to execute arbitrary code via an ALZ archive containing a file with a long filename.

Affected Platforms (CPE)

📦
Hauri

Hauri Livecall

All versions
📦
Hauri

Virobot

= advanced_server
📦
Hauri

Virobot

= expert_4.0
📦
Hauri

Virobot

= linux_server_2.0
📦
Hauri

Vrazmain.dll

= 5.8.22.137

References & Advisories

🔗 http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0150.html
🔗 http://secunia.com/advisories/16852
🔗 http://secunia.com/secunia_research/2005-47/advisory/
🔗 http://securitytracker.com/id?1015018
🔗 http://securitytracker.com/id?1015019
🔗 http://www.osvdb.org/19878
🔗 http://www.securityfocus.com/bid/15045
🔗 http://www.vupen.com/english/advisories/2005/1978

相關漏洞威脅

CVE-2005-27207.5

Stack-based buffer overflow in the ACE archive decompression library (vrAZace.dll) in HAURI Anti-Virus products including ViRobot ...

CVE-2005-26705.0

Directory traversal vulnerability in HAURI Anti-Virus products including ViRobot Expert 4.0, Advanced Server, Linux Server 2.0, an...

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...