Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3447

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-3447
Last Modified 07 Mar 2011 10:10:50
Published 04 Aug 2008 01:41:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3447

Summary

The scanning engine in F-Prot Antivirus 6.2.1 4252 allows remote attackers to cause a denial of service (infinite loop) via a malformed ZIP archive, probably related to invalid offsets.

Vulnerable Systems

Application

  • F-prot Antivirus 6.2.1.4252

  • F-prot Scanning Engine 4.4.4.56


References

XF - fprotantivirus-infiniteloop-dos(44134)

VUPEN - ADV-2008-2283

SECTRACK - 1020612

BID - 30461

MILW0RM - 6174

SECUNIA - 31313

FULLDISC - 20080731 F-PROT antivirus 6.2.1.4252 infinite loop denial of service via malformed archive


Last Updated: 27 May 2016 10:48:12