Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5409

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-5409
Last Modified 13 Aug 2009 01:28:06
Published 10 Dec 2008 01:44:42
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-5409

Summary

Unspecified vulnerability in the pdf.xmd module in (1) BitDefender Free Edition 10 and Antivirus Standard 10, (2) BullGuard Internet Security 8.5, and (3) Software602 Groupware Server 6.0.08.1118 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file, possibly related to included compressed streams that were processed with the ASCIIHexDecode filter. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Bitdefender 10

  • Bitdefender Antivirus 10

  • Bullguard Internet Security 8.5

  • Software602 Groupware Server 6.0.08.1118


References

XF - bitdefender-pdf-dos(46750)

BID - 32396

SECUNIA - 32814

SECUNIA - 32789

SECUNIA - 27805

OSVDB - 50205

OSVDB - 50103

OSVDB - 50010

MISC - http://milw0rm.com/sploits/2008-BitDefenderDOS.zip

MILW0RM - 7178


Last Updated: 27 May 2016 10:48:48