CVE-2021-3485

An Improper Input Validation vulnerability in the Product Update feature of Bitdefender Endpoint Security Tools for Linux allows a man-in-the-middle attacker to abuse the DownloadFile function of the Product Update to achieve remote code execution. This issue affects: Bitdefender Endpoint Securit...

PT-2009-2131 · Bitdefender · Bitdefender For Linux

Name of the Vulnerable Software and Affected Versions: Bitdefender for Linux versions 7.60825 and earlier Description: The issue is related to multiple integer overflows in the scanning engine, which can be exploited by remote attackers using malformed NeoLite and ASProtect packed PE files. This...