CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-3154

Format string vulnerability in the logging functionality in BitDefender AntiVirus 7.2 through 9 allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in file or directory name.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.029

EPSS Ranking 85.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://kb.bitdefender.com/KB261-en--Filename-Format-String-Vulnerability.html
http://secunia.com/advisories/16991
http://securityreason.com/securityalert/45
http://shadock.net/secubox/BitDefenderLoggingFunc.html
http://www.securityfocus.com/bid/14968
http://kb.bitdefender.com/KB261-en--Filename-Format-String-Vulnerability.html
http://secunia.com/advisories/16991
http://securityreason.com/securityalert/45
http://shadock.net/secubox/BitDefenderLoggingFunc.html
http://www.securityfocus.com/bid/14968

Products affected by CVE-2005-3154

Softwin » Bitdefender » Version: 7.2

cpe:2.3:a:softwin:bitdefender:7.2
Softwin » Bitdefender » Version: 8.0

cpe:2.3:a:softwin:bitdefender:8.0
Softwin » Bitdefender » Version: 9.0

cpe:2.3:a:softwin:bitdefender:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-3154

Products

Pricing

Contact Us