CVE-2005-2720

high

Description

Stack-based buffer overflow in the ACE archive decompression library (vrAZace.dll) in HAURI Anti-Virus products including ViRobot Expert 4.0, Advanced Server, Linux Server 2.0, and LiveCall, when compressed file scanning is enabled, allows remote attackers to execute arbitrary code via an ACE archive that contains a file with a long filename.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/22005

http://www.securityfocus.com/bid/14647

http://secunia.com/secunia_research/2005-33/advisory/

http://secunia.com/advisories/16488/

http://marc.info/?l=bugtraq&m=112490854126619&w=2

Details

Source: Mitre, NVD

Published: 2005-08-30

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.04639