Intrusion Prevention

RAR.Archive.Long.Unicode.Filename.Parsing.Buffer.Overflow

Description

This indicates a possible exploit of a buffer overflow vulnerability in McAfee VirusScan Enterprise.
This flaw is caused by a memory corruption error within the On-Access feature, when scanning a file with an overly long filename containing multi-byte characters.

Affected Products

McAfee VirusScan Enterprise 8.0 i patch 11
McAfee VirusScan Enterprise 8.0 i

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to version 8.0i Patch 12 or later :
https://mysupport.mcafee.com/eservice_enu/start.swe

CVE References

CVE-2007-2152