Unrated severityNVD Advisory· Published Jul 24, 2007· Updated Jun 16, 2026
CVE-2007-3951
CVE-2007-3951
Description
Multiple buffer overflows in Norman Antivirus 5.90 allow remote attackers to execute arbitrary code via a crafted (1) ACE or (2) LZH file, resulting from an "integer cast around."
Affected products
2- Range: = 5.90
Patches
Vulnerability mechanics
References
14- osvdb.org/37982nvd
- osvdb.org/37983nvd
- secunia.com/advisories/26178nvd
- securityreason.com/securityalert/2912nvd
- www.nruns.com/security_advisory_Norman_all_ace_buffer_overflow.phpnvd
- www.nruns.com/security_advisory_norman_antivirus_lzh_buffer_overflow.phpnvd
- www.securityfocus.com/archive/1/474423/100/0/threadednvd
- www.securityfocus.com/archive/1/474432/100/0/threadednvd
- www.securityfocus.com/bid/25003nvd
- www.securityfocus.com/bid/25015nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/2619nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35559nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35561nvd
News mentions
0No linked articles in our index yet.