{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"F-Secure Anti-Virus for Linux Servers version 4.61 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus for Citrix Servers version 5.50 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"Citrix","scada":false}}},{"description":"F-Secure Anti-Virus for Linux Workstations version 4.52 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"Citrix","scada":false}}},{"description":"F-Secure Anti-Virus for Linux Gateways version 4.61 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"Citrix","scada":false}}},{"description":"F-Secure Internet Gatekeeper version 6.41 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"Citrix","scada":false}}},{"description":"F-Secure Personal Express version 5.10 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus Linux Client Security version 5.01 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Anti-Virus for Firewalls version 6.20 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus for Windows Servers version 5.50 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"F-Secure Internet Gatekeeper for Linux version 2.06 et versions pr\u00e9c\u00e9dentes.","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus Linux Server Security version 5.01 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"Server Security","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Anti-Virus for MIMEsweeper version 5.51 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus Client Security version 5.55 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Anti-Virus 2004 et 2005 ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus for Samba Servers version 4.60 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"Samba","scada":false}}},{"description":"F-Secure Anti-Virus for MS Exchange version 6.31 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus for Workstation version 5.43 et versions pr\u00e9c\u00e9dentes ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Internet Security 2004 et 2005 ;","product":{"name":"Internet Security","vendor":{"name":"ESET","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 de type d\u00e9bordement de la m\u00e9moire tampon a \u00e9t\u00e9\nd\u00e9couverte dans de nombreux produits F-Secure. Cette vuln\u00e9rabilit\u00e9\npermet \u00e0 un utilisateur mal intentionn\u00e9 de faire ex\u00e9cuter un code\narbitraire sur le syst\u00e8me vuln\u00e9rable au moyen d'un fichier compress\u00e9 au\nformat ARJ malicieusement constitu\u00e9.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. Documentation).\n","cves":[],"links":[{"title":"Mise \u00e0 jour de s\u00e9curit\u00e9 du paquetage NetBSD    fprot-workstation-bin :","url":"ftp://ftp.netbsd.org/pub/NetBSD/packages/pkgsrc/security/fprot-workstation-bin/README.html"},{"title":"Site Internet de F-Secure :","url":"http://www.f-secure.com"}],"reference":"CERTA-2005-AVI-065","revisions":[{"description":"version initiale.","revision_date":"2005-02-11T00:00:00.000000"},{"description":"ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 NetBSD.","revision_date":"2005-02-14T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire"}],"summary":"Une vuln\u00e9rabilit\u00e9 pr\u00e9sente dans divers produits F-Secure lors du\ntraitement des fichiers compress\u00e9s au format ARJ permet l'ex\u00e9cution de\ncode arbitraire.\n","title":"Vuln\u00e9rabilit\u00e9 dans les produits F-Secure","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 F-Secure FSC-2005-1 du 10 f\u00e9vrier 2005","url":"http://www.f-secure.com/security/fsc-2005-1.shtml"}]}