Synopsis
The antivirus scanner is vulnerable to a denial of service.
Description
The remote host is running Dr.Web - an antivirus program.
There is a flaw in the remote version of Dr.Web which may make it crash when scanning files whose name is excessively long.
An attacker may use this flaw to execute arbitrary code on this host.
To exploit it, an attacker would need to send a file to the remote host and have it scanned by this software.
Solution
Upgrade to version 4.29b or newer
Plugin Details
File Name: drweb_overflow.nasl
Agent: windows
Supported Sensors: Nessus Agent, Nessus
Vulnerability Information
Required KB Items: SMB/Registry/Enumerated
Exploit Ease: No known exploits are available
Reference Information
BID: 7022