Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0308

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2008-0308
Last Modified 07 Mar 2011 10:04:18
Published 28 Feb 2008 03:44:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0308

Summary

Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service (memory consumption) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).

Vulnerable Systems

Application

  • Symantec Antivirus Clearswift 4.3.16.39

  • Symantec Antivirus Filtering Domino Mpe 3.0.12

  • Symantec Antivirus Messaging 4.3.16.39

  • Symantec Antivirus Microsoft Sharepoint 4.3.16.39

  • Symantec Antivirus Ms Isa 4.3.16.39

  • Symantec Antivirus Network Attached Storage 4.3.16.39

  • Symantec Antivirus Scan Engine 4.3.16.39

  • Symantec Antivirus Scan Engine Caching 4.3.16.39

  • Symantec Mail Security Exchange 4.6.5.12

  • Symantec Mail Security Exchange 5.0.4.363

  • Symantec Scan Engine 5.1.4.24


References

VUPEN - ADV-2008-0680

CONFIRM - http://www.symantec.com/avcenter/security/Content/2008.02.27.html

SECTRACK - 1019503

BID - 27911

SECUNIA - 29140

IDEFENSE - 20080226 Symantec Scan Engine 5.1.2 RAR File Denial of Service Vulnerability


Last Updated: 27 May 2016 10:46:46