Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0308


Vulnerability Score 7.1 7.1
CVE Id CVE-2008-0308
Last Modified 07 Mar 2011 10:04:18
Published 28 Feb 2008 03:44:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before, allows remote attackers to cause a denial of service (memory consumption) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).

Vulnerable Systems


  • Symantec Antivirus Clearswift

  • Symantec Antivirus Filtering Domino Mpe 3.0.12

  • Symantec Antivirus Messaging

  • Symantec Antivirus Microsoft Sharepoint

  • Symantec Antivirus Ms Isa

  • Symantec Antivirus Network Attached Storage

  • Symantec Antivirus Scan Engine

  • Symantec Antivirus Scan Engine Caching

  • Symantec Mail Security Exchange

  • Symantec Mail Security Exchange

  • Symantec Scan Engine


VUPEN - ADV-2008-0680


SECTRACK - 1019503

BID - 27911

SECUNIA - 29140

IDEFENSE - 20080226 Symantec Scan Engine 5.1.2 RAR File Denial of Service Vulnerability

Last Updated: 27 May 2016 10:46:46