CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
93.0%
Buffer overflow in the web console in F-Secure Anti-Virus for Microsoft Exchange 6.40, and Internet Gatekeeper 6.40 through 6.42 and 6.50 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors. NOTE: By default, the connections are only allowed from the local host.
Vendor | Product | Version | CPE |
---|---|---|---|
f-secure | f-secure_anti-virus | 6.40 | cpe:2.3:a:f-secure:f-secure_anti-virus:6.40:*:ms_exchange:*:*:*:*:* |
f-secure | internet_gatekeeper | 6.4 | cpe:2.3:a:f-secure:internet_gatekeeper:6.4:*:*:*:*:*:*:* |
f-secure | internet_gatekeeper | 6.41 | cpe:2.3:a:f-secure:internet_gatekeeper:6.41:*:*:*:*:*:*:* |
f-secure | internet_gatekeeper | 6.42 | cpe:2.3:a:f-secure:internet_gatekeeper:6.42:*:*:*:*:*:*:* |
f-secure | internet_gatekeeper | 6.50 | cpe:2.3:a:f-secure:internet_gatekeeper:6.50:*:*:*:*:*:*:* |