CVE-2006-6627
Integer overflow in the packed PE file parsing implementation in BitDefender products before 20060829, including Antivirus, Antivirus Plus, Internet Security, Mail Protection for Enterprises, and Online Scanner; and BitDefender products for Microsoft ISA Server and Exchange 5.5 through 2003; allows remote attackers to execute arbitrary code via a crafted file, which triggers a heap-based buffer overflow, aka the "cevakrnl.xmd vulnerability."
| Software | From | Fixed in |
|---|---|---|
| softwin / bitdefender_online_scanner | - | - |
| softwin / bitdefender | isa_server | isa_server.x |
| softwin / bitdefender | ms_exchange_5.5 | ms_exchange_5.5.x |
| softwin / bitdefender_antivirus | plus | plus.x |
| softwin / bitdefender_mail_protection | enterprises | enterprises.x |
| softwin / bitdefender | ms_exchange_2003 | ms_exchange_2003.x |
| softwin / bitdefender_antivirus | - | - |
| softwin / bitdefender | ms_exchange_2000 | ms_exchange_2000.x |
| softwin / bitdefender_internet_security | - | - |
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051319.html
- http://secunia.com/advisories/23415
- http://securityreason.com/securityalert/2044
- http://securitytracker.com/id?1017389
- http://www.bitdefender.com/KB323-en--cevakrnl.xmd-vulnerability.html
- http://www.securityfocus.com/archive/1/454501/100/0/threaded
- http://www.securityfocus.com/bid/21610
- http://www.vupen.com/english/advisories/2006/5040
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30904
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime