MailScanner Multiple Insecure Temporary Files Vulnerabilities

MailScanner is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Multiple security vulnerabilities in different antiviral applications

ClamAV: LZH DoS; BitDefender: multiple integer overflow on PE parsing; Avast: multiple buffer overflows on ISO and RPM parsing; AVG: crash on UPX files; Sophos: multiple DoS on different compressed formats parsing; F-Secure F-prot: protection bypass...

Design/Logic Flaw

Unspecified vulnerability in the pdf.xmd module in 1 BitDefender Free Edition 10 and Antivirus Standard 10, 2 BullGuard Internet Security 8.5, and 3 Software602 Groupware Server 6.0.08.1118 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code v...

BitDefender 'pdf.xmd' Module PDF Parsing Remote DoS Vulnerability

This host is installed with BitDefender Internet Security and AntiVirus and is prone to denial of service vulnerability. The flaw is due to boundary error in 'pdf.xmd' module when parsing of data encoded using 'FlateDecode' and 'ASCIIHexDecode' filters. This can be exploited to cause a memory...

BitDefender 'pdf.xmd' Module PDF Parsing Remote DoS Vulnerability

BitDefender Internet Security and AntiVirus is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

BitDefender pdf.xmd模块PDF解析远程拒绝服务漏洞

BUGTRAQ ID: 32396 BitDefender Antivirus是具有功能强大的反病毒引擎以及互联网过滤技术的杀毒软件。 BitDefender Antivirus的pdf.xmd模块在处理使用FlateDecode和ASCIIHexDecode压缩选项所压缩的数据时存在拒绝服务漏洞。如果用户受骗打开了设置有特制/JavaScript对象标签的pdf文件的话，就可能在扫描文件时触发死循环，导致程序崩溃。 Softwin BitDefender Antivirus 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

BitDefender (module pdf.xmd) Infinite Loop Denial of Service PoC

No description provided by source. Deny Of Service and infinite loop in BitDefender module pdf.xmd / ProTeuS @ cih.ms / tested on pdf.xmd BitDefender's pdf engine by Alexandru Matei 0.1,Oct 8 2008, CRC32=A393F805 and on pdf.xmd last update by the moment of publication Deny of service occurs durin...

BitDefender antivirus DoS

Crash on PDF file check in bdc.exe...

Fwd: Deny Of Service and infinite loop in BitDefender (module pdf.xmd)

Deny Of Service and infinite loop in BitDefender module pdf.xmd / ProTeuS @ cih.ms / tested on pdf.xmd BitDefender's pdf engine by Alexandru Matei 0.1,Oct 8 2008, CRC32=A393F805 and on pdf.xmd last update by the moment of publication Deny of service occurs during parsing of included compressed...

BitDefender - Module pdf.xmd Infinite Loop Denial of Service (PoC)

BitDefender - Module pdf.xmd Infinite Loop Denial of Service PoC Deny Of Service and infinite loop in BitDefender module pdf.xmd / ProTeuS @ cih.ms / tested on pdf.xmd BitDefender's pdf engine by Alexandru Matei 0.1,Oct 8 2008, CRC32=A393F805 and on pdf.xmd last update by the moment of publicatio...

BitDefender (module pdf.xmd) Infinite Loop Denial of Service PoC

Exploit for unknown platform in category dos / poc ================================================================ BitDefender module pdf.xmd Infinite Loop Denial of Service PoC ================================================================ Deny Of Service and infinite loop in BitDefender modu...

BitDefender - Module pdf.xmd Infinite Loop Denial of Service (PoC)

Deny Of Service and infinite loop in BitDefender module pdf.xmd / ProTeuS @ cih.ms / tested on pdf.xmd BitDefender's pdf engine by Alexandru Matei 0.1,Oct 8 2008, CRC32=A393F805 and on pdf.xmd last update by the moment of publication Deny of service occurs during parsing of included compressed...

CVE-2008-1735

BitDefender Antivirus 2008 20080118 and earlier allows local users to cause a denial of service system crash via an invalid pointer to the CLIENTID structure in a call to the NtOpenProcess hooked System Service Descriptor Table SSDT function...

BitDefender Antivirus无效SSDT参数本地拒绝服务漏洞

BUGTRAQ ID: 28741 CVECAN ID: CVE-2008-1735 BitDefender Antivirus 2008是具有功能强大的反病毒引擎以及互联网过滤技术的杀毒软件。 BitDefender没有正确地验证提供给NtOpenProcess的CLIENTID结构指针，如果传送了无效指针的话，就会导致整个系统崩溃。 /----------- NtOpenProcessPHANDLE ProcessHandle, ACCESSMASK AccessMask, POBJECTATTRIBUTES ObjectAttributes, PCLIENTID ClientId...

CVE-2008-1735

CVE-2008-1735 family involves multiple antivirus/firewall products where hooked SSDT functions do not validate arguments, enabling local denial-of-service via dereferencing invalid pointers. Affected: BitDefender Antivirus 2008 (Builds including 11.0.11), Comodo Firewall Pro, Sophos Antivirus 7.x...

CVE-2008-1735

BitDefender Antivirus 2008 20080118 and earlier allows local users to cause a denial of service system crash via an invalid pointer to the CLIENTID structure in a call to the NtOpenProcess hooked System Service Descriptor Table SSDT function...

CORE-2008-0320 - Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs/ Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls Advisory Information Title: Insufficient argument validation of hooked...

Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls

Advisory ID Internal CORE-2008-0320 Advisory Information Title: Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls Advisory ID: CORE-2008-0320 Date published: 2008-04-28 Date of last update: 2008-04-28 Vendors contacted: BitDefender, Comodo, Sophos and...

Directory traversal

Directory traversal vulnerability in BitDefender Update Server http.exe, as used in BitDefender products including Security for Fileservers and Enterprise Manager BDEM, allows remote attackers to read arbitrary files via .. dot dot sequences in an HTTP request...

CVE-2008-0396

Directory traversal vulnerability in BitDefender Update Server http.exe, as used in BitDefender products including Security for Fileservers and Enterprise Manager BDEM, allows remote attackers to read arbitrary files via .. dot dot sequences in an HTTP request...