Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0792

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2008-0792
Last Modified 13 Sep 2011 12:00:00
Published 14 Feb 2008 09:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0792

Summary

Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, F-Secure Protection Service, and others, allow remote attackers to bypass malware detection via a crafted CAB archive.

Vulnerable Systems

Application

  • F-secure Anti-virus 2006

  • F-secure Anti-virus 2007

  • F-secure Anti-virus 2008

  • F-secure Anti-virus Client Security 6.03

  • F-secure Anti-virus Client Security 6.04

  • F-secure Anti-virus Client Security 7.01

  • F-secure Anti-virus Client Security 7.10

  • F-secure Anti-virus For Linux 4.65

  • F-secure Anti-virus For Workstations 5.44

  • F-secure Anti-virus For Workstations 7.00

  • F-secure Anti-virus For Workstations 7.10

  • F-secure Anti-virus Linux Client Security 5.52

  • F-secure Anti-virus Linux Client Security 5.53

  • F-secure Internet Security 2006

  • F-secure Internet Security 2007

  • F-secure Internet Security 2008

  • F-secure Protection Service For Business 3.00

  • F-secure Protection Service For Consumers 7.00


References

CONFIRM - http://www.f-secure.com/security/fsc-2008-1.shtml

XF - fsecure-cab-rar-security-bypass(40480)

VUPEN - ADV-2008-0544

SECTRACK - 1019413

SECTRACK - 1019412

SECTRACK - 1019405

SECUNIA - 28919


Last Updated: 27 May 2016 10:46:56