Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0309


Vulnerability Score 6.8 6.8
CVE Id CVE-2008-0309
Last Modified 07 Mar 2011 10:04:18
Published 28 Feb 2008 03:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



Stack-based buffer overflow in Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).

Vulnerable Systems


  • Symantec Antivirus Filtering Domino Mpe 3.0.12

  • Symantec Antivirus Network Attached Storage

  • Symantec Antivirus Scan Engine

  • Symantec Antivirus Scan Engine Caching

  • Symantec Antivirus Scan Engine Clearswift

  • Symantec Antivirus Scan Engine For Microsoft Sharepoint

  • Symantec Antivirus Scan Engine For Ms Isa

  • Symantec Antivirus Scan Engine Messaging

  • Symantec Mail Security For Microsoft Exchange

  • Symantec Mail Security For Microsoft Exchange

  • Symantec Scan Engine


VUPEN - ADV-2008-0680


SECTRACK - 1019503

BID - 27913

SECUNIA - 29140

IDEFENSE - 20080226 Symantec Scan Engine 5.1.2 RAR File Buffer Overflow Vulnerability

Last Updated: 27 May 2016 10:46:46