Dr.Web scanMail Function Unspecified Overflow

Medium Nessus Plugin ID 14198


Arbitrary code may be run on the remote host.


The remote host is running Dr.Web - an antivirus program.

There is a buffer overflow in the remote version of Dr.Web which might allow an attacker to execute arbitrary commands on the remote host. Very little details are known regarding this issue at this time.


Upgrade to version 4.31.5 or newer.

Plugin Details

Severity: Medium

ID: 14198

File Name: drweb_unspecifed_vuln.nasl

Version: $Revision: 1.10 $

Type: local

Agent: windows

Family: Windows

Published: 2004/08/03

Modified: 2011/03/21

Dependencies: 11625

Risk Information

Risk Factor: Medium


Base Score: 4.6

Temporal Score: 3.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:U/RL:U/RC:ND

Vulnerability Information

Required KB Items: DrWeb/Version

Exploit Available: false

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 2004/06/29

Reference Information

BID: 10628

OSVDB: 7956