Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Published: 18/12/2006 Updated: 17/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Integer overflow in the packed PE file parsing implementation in BitDefender products prior to 20060829, including Antivirus, Antivirus Plus, Internet Security, Mail Protection for Enterprises, and Online Scanner; and BitDefender products for Microsoft ISA Server and Exchange 5.5 through 2003; allows remote malicious users to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow, aka the "cevakrnl.xmd vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
softwin bitdefender online scanner
softwin bitdefender isa server
softwin bitdefender ms exchange 5.5
softwin bitdefender antivirus plus
softwin bitdefender mail protection enterprises
softwin bitdefender ms exchange 2003
softwin bitdefender antivirus
softwin bitdefender ms exchange 2000
softwin bitdefender internet security

NVD-CWE-Other http://www.bitdefender.com/KB323-en--cevakrnl.xmd-vulnerability.html http://www.securityfocus.com/bid/21610 http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051319.html http://securitytracker.com/id?1017389 http://secunia.com/advisories/23415 http://securityreason.com/securityalert/2044 http://www.vupen.com/english/advisories/2006/5040 https://exchange.xforce.ibmcloud.com/vulnerabilities/30904 http://www.securityfocus.com/archive/1/454501/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-6627

Vulnerability Summary

References

Vulmon Search

About

Products

Connect