HAURI.Anti-Virus.ACE.Archive.Handling.Buffer.Overflow
Description
This indicates an attack attempt against a Buffer Overflow vulnerability in HAURI Anti-Virus.
The vulnerability is in the ACE archive decompression library and is caused by an error when the vulnerable software handles an ACE archive that contains a file with a long filename. When compressed file scanning is enabled, it may allow a remote attacker to execute arbitrary code via an ACE archive that contains a file with a long filename.
Affected Products
ViRobot Expert 4.0
ViRobot Advanced Server
ViRobot Linux Server 2.0
HAURI LiveCall
Other versions may also be affected.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the appropriate patches:
ViRobot Linux Server 2.0:
ViRobot Expert 4.0 / ViRobot Advanced Server:
Update to the latest version via the online update. (vrazmain.dll
version 5.8.22.137)
HAURI LiveCall:
Update to the latest version by visiting the vendor's LiveCall
website. (vrazmain.dll version: 5.8.22.137)
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-09-23 | 16.931 | Sig Added |