Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0910

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-0910
Last Modified 07 Mar 2011 10:05:39
Published 22 Feb 2008 05:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0910

Summary

Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, F-Secure Protection Service, and others, allow remote attackers to bypass malware detection via a crafted RAR archive. NOTE: this might be related to CVE-2008-0792.

Vulnerable Systems

Application

  • F-secure Anti-virus 2006

  • F-secure Anti-virus 2007

  • F-secure Anti-virus 2008

  • F-secure Anti-virus Client Security 6.03

  • F-secure Anti-virus Client Security 6.04

  • F-secure Anti-virus Client Security 7.01

  • F-secure Anti-virus Client Security 7.10

  • F-secure Anti-virus For Linux 4.65

  • F-secure Anti-virus For Workstations 5.44

  • F-secure Anti-virus For Workstations 7.00

  • F-secure Anti-virus For Workstations 7.10

  • F-secure Anti-virus Linux Client Security 5.52

  • F-secure Anti-virus Linux Client Security 5.53

  • F-secure Internet Security 2006

  • F-secure Internet Security 2007

  • F-secure Internet Security 2008

  • F-secure Protection Service For Business 3.00

  • F-secure Protection Service For Consumers 7.00


References

CONFIRM - http://www.f-secure.com/security/fsc-2008-1.shtml

VUPEN - ADV-2008-0544

SECUNIA - 28919

XF - fsecure-cab-rar-security-bypass(40480)

SECTRACK - 1019413

SECTRACK - 1019412

SECTRACK - 1019405


Last Updated: 27 May 2016 10:46:58