Lucene search
K

243 matches found

Tenable Nessus
Tenable Nessus
added 2013/06/27 12:0 a.m.32 views

Symantec Mail Security for SMTP RAR and CAB Parsing Multiple Vulnerabilities

The remote host is running a version of the Symantec Mail Security for Exchange / Domino that is affected by multiple vulnerabilities : - A heap overflow vulnerability exists that can be triggered when the scanning engine processes a specially crafted CAB file, possibly leading to arbitrary code...

9.3CVSS5.9AI score0.05957EPSS
Exploits1References5
Exploit DB
Exploit DB
added 2013/03/13 12:0 a.m.40 views

Cam2pc 4.6.2 - '.BMP' Image Processing Integer Overflow

Application: Cam2pc BMP Image Processing Integer Overflow Vulnerability Platforms: Windows Vendor : http://www.nabocorp.co Versions : The vulnerability is confirmed in version 4.6.2 Freeware Edition Other versions may also be affected. Date : 2013-03-13 Contact : [email protected]...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2012/12/18 3:17 a.m.12 views

Batchwiper malware, new virus targets Iranian computers

Iranian CERT is sounding the alarm over another bit of data-deleting malware it's discovered on PCs in the country. Dubbed Batchwiper, the malware systematically wipes any drive partitions starting with the letters D through I Drive, along with any files stored on the Windows desktop of the user...

7AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2012/12/13 12:0 a.m.1 views

Sophos Anti-Virus RAR VMSF_RGB Filter Parsing Integer Underflow

An integer underflow vulnerability has been reported in Sophos Anti-Virus. The vulnerability is due to insufficient parameters validation while parsing RAR files. A remote attacker could exploit this vulnerability by causing the affected software to process a specially crafted RAR file. Successfu...

7.6AI score
Exploits0
UbuntuCve
UbuntuCve
added 2012/03/21 10:11 a.m.42 views

CVE-2012-1443

The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal aka Cat QuickHeal 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0....

4.3CVSS5.9AI score0.99636EPSS
Exploits0References2
Prion
Prion
added 2012/03/21 10:11 a.m.22 views

Design/Logic Flaw

The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal aka Cat QuickHeal 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0....

4.3CVSS6.9AI score0.99636EPSS
Exploits0References17Affected Software35
OSV
OSV
added 2012/03/21 10:11 a.m.6 views

PYSEC-2012-24

The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal aka Cat QuickHeal 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0....

6.9AI score
Exploits0References17
CVE
CVE
added 2012/03/21 10:0 a.m.83 views

CVE-2012-1443

CVE-2012-1443 describes a bypass in the RAR file parser used by multiple antivirus products (e.g., ClamAV 0.96.4-related integrations and several vendors) where a RAR file starting with an MZ character sequence can be analyzed by user-assisted remote attackers to bypass malware detection. The evi...

4.3CVSS6.5AI score0.99636EPSS
Exploits0References17Affected Software35
Cvelist
Cvelist
added 2012/03/21 10:0 a.m.34 views

CVE-2012-1443

The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal aka Cat QuickHeal 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0....

6.3AI score0.99636EPSS
Exploits0References17
OpenVAS
OpenVAS
added 2009/06/02 12:0 a.m.33 views

AVG AntiVirus Engine Malware Detection Bypass Vulnerability - Linux

AVG AntiVirus Server Edition for Linux is prone to a malware detection bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CP...

10CVSS6.7AI score0.03407EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2009/05/10 12:0 a.m.32 views

F-Secure Products ZIP/RAR File Scan Evasion (FSC-2009-1)

The remote host has an antivirus product from F-Secure installed. The installed version of the product fails to accurately scan certain ZIP and RAR archive files. Therefore, it may be possible for such files to evade detection from the scanning engine. C Tenable Network Security, Inc...

6.8CVSS5.5AI score0.02209EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2008/05/22 12:0 a.m.29 views

GLSA-200805-19 : ClamAV: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200805-19 ClamAV: Multiple vulnerabilities Multiple vulnerabilities have been reported: Damian Put reported a heap-based buffer overflow when processing PeSpin packed PE binaries CVE-2008-0314. Alin Rad Pop of Secunia Research...

10CVSS8.9AI score0.10858EPSS
Exploits6References8
NVD
NVD
added 2008/04/16 4:5 p.m.18 views

CVE-2008-1835

ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar...

5CVSS6.5AI score0.04029EPSS
Exploits0References14
CVE
CVE
added 2008/04/16 4:0 p.m.60 views

CVE-2008-1835

CVE-2008-1835 affects ClamAV up to version 0.93. The issue allows remote attackers to bypass the scanning engine by supplying a RAR file with an invalid version number that ClamAV cannot parse but can be extracted by WinRAR. The vulnerability is documented across multiple advisories (Mandriva, SU...

5CVSS6.4AI score0.04029EPSS
Exploits0References14Affected Software1
Cvelist
Cvelist
added 2008/04/16 4:0 p.m.27 views

CVE-2008-1835

ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar...

6.4AI score0.04029EPSS
Exploits0References14
Prion
Prion
added 2008/02/28 8:44 p.m.20 views

Code injection

Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service memory consumption via a malformed RAR file to the Internet Content Adaptation Protocol ICAP port...

7.1CVSS7.1AI score0.02553EPSS
Exploits1References6Affected Software10
NVD
NVD
added 2008/02/28 8:44 p.m.24 views

CVE-2008-0309

Stack-based buffer overflow in Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a malformed RAR file to...

6.8CVSS8.2AI score0.03659EPSS
Exploits1References6
Prion
Prion
added 2008/02/28 8:44 p.m.24 views

Stack overflow

Stack-based buffer overflow in Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a malformed RAR file to...

6.8CVSS8.8AI score0.03659EPSS
Exploits1References6Affected Software10
Cvelist
Cvelist
added 2008/02/28 8:0 p.m.30 views

CVE-2008-0308

Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service memory consumption via a malformed RAR file to the Internet Content Adaptation Protocol ICAP port...

6.6AI score0.02553EPSS
Exploits1References6
Cvelist
Cvelist
added 2008/02/28 8:0 p.m.30 views

CVE-2008-0309

Stack-based buffer overflow in Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a malformed RAR file to...

8.2AI score0.03659EPSS
Exploits1References6
Rows per page
Query Builder