Lucene search
K

119 matches found

exploitpack
exploitpack
added 2008/07/31 12:0 a.m.22 views

F-PROT AntiVirus 6.2.1.4252 - Malformed Archive Infinite Loop Denial of Service

F-PROT AntiVirus 6.2.1.4252 - Malformed Archive Infinite Loop Denial of Service $ /opt/f-prot/fpscan snot.zip F-PROT Antivirus version 6.2.1.4252 built: 2008-04-28T16-44-10 FRISK Software International C Copyright 1989-2007 Engine version: 4.4.4.56 Virus signatures:...

7.3AI score
Exploits0
Exploit DB
Exploit DB
added 2008/07/31 12:0 a.m.40 views

F-PROT AntiVirus 6.2.1.4252 - Malformed Archive Infinite Loop Denial of Service

$ /opt/f-prot/fpscan snot.zip F-PROT Antivirus version 6.2.1.4252 built: 2008-04-28T16-44-10 FRISK Software International C Copyright 1989-2007 Engine version: 4.4.4.56 Virus signatures: 200806021748d9e53873896ea96bd4e8a470344c25b5 /opt/f-prot/antivir.def Scanning: - ^^ at this point the scanner...

7.4AI score
Exploits0
Prion
Prion
added 2008/07/21 4:41 p.m.16 views

Out-of-bounds

The scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allows remote attackers to cause a denial of service engine crash via a CHM file with a large nbdir value that triggers an out-of-bounds read...

4.3CVSS6.6AI score0.02213EPSS
Exploits0References7Affected Software2
NVD
NVD
added 2008/07/21 4:41 p.m.18 views

CVE-2008-3244

The scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allows remote attackers to cause a denial of service engine crash via a CHM file with a large nbdir value that triggers an out-of-bounds read...

4.3CVSS6.4AI score0.02213EPSS
Exploits0References7
Prion
Prion
added 2008/07/21 4:41 p.m.17 views

Code injection

Multiple unspecified vulnerabilities in the scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allow remote attackers to cause a denial of service via 1 a crafted UPX-compressed file, which triggers an engine crash; 2 a crafted Microsoft Office file, which triggers an infinite loop; ...

4.3CVSS7AI score0.02143EPSS
Exploits0References6Affected Software2
NVD
NVD
added 2008/07/21 4:41 p.m.17 views

CVE-2008-3243

Multiple unspecified vulnerabilities in the scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allow remote attackers to cause a denial of service via 1 a crafted UPX-compressed file, which triggers an engine crash; 2 a crafted Microsoft Office file, which triggers an infinite loop; ...

4.3CVSS6.8AI score0.02143EPSS
Exploits0References6
Cvelist
Cvelist
added 2008/07/21 4:0 p.m.29 views

CVE-2008-3243

Multiple unspecified vulnerabilities in the scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allow remote attackers to cause a denial of service via 1 a crafted UPX-compressed file, which triggers an engine crash; 2 a crafted Microsoft Office file, which triggers an infinite loop; ...

6.7AI score0.02143EPSS
Exploits0References6
CVE
CVE
added 2008/07/21 4:0 p.m.71 views

CVE-2008-3244

CVE-2008-3244 affects F-PROT Antivirus. The vulnerability arises in the scanning engine (before 4.4.4) used by F-PROT until version 6.0.9.0, where processing a CHM file with a large nb_dir value can trigger an out-of-bounds read, leading to remote denial of service (engine crash). Related OpenVAS...

4.3CVSS6.3AI score0.02213EPSS
Exploits0References7Affected Software2
Cvelist
Cvelist
added 2008/07/21 4:0 p.m.35 views

CVE-2008-3244

The scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allows remote attackers to cause a denial of service engine crash via a CHM file with a large nbdir value that triggers an out-of-bounds read...

6.3AI score0.02213EPSS
Exploits0References7
CVE
CVE
added 2008/07/21 4:0 p.m.60 views

CVE-2008-3243

CVE-2008-3243 concerns the F-PROT Antivirus engine. Technical sources (CVE entry, GLSA 200904-14, and OpenVAS/Nessus summaries) indicate multiple DoS-type vulnerabilities in the engine prior to 4.4.4, affecting F-PROT Antivirus versions before 6.0.9.0. An attacker could remotely trigger denial of...

4.3CVSS6.7AI score0.02143EPSS
Exploits0References6Affected Software2
Kaspersky
Kaspersky
added 2008/07/21 12:0 a.m.33 views

KLA10151 DoS vulnerability in F-Prot antivirus

An unspecified vulnerability was found in F-Prot antivirus. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely at a point related to the scanning engine. Original advisories Release notes Related products...

4.3CVSS6.4AI score0.02213EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2008/07/21 12:0 a.m.30 views

F-PROT Antivirus Engine < 4.4.4 Multiple File Handling DoS Vulnerabilities

The version of F-PROT Anti-Virus installed on the remote Windows host contains flaws in the way it handles CHM, UPX-compressed, ASPack-compressed and certain Microsoft office files. - A malformed CHM file containing '0xffffffff' in the 'nbdir' field could crash the application. - A malformed...

4.3CVSS5.5AI score0.02213EPSS
Exploits0References4
securityvulns
securityvulns
added 2008/07/19 12:0 a.m.50 views

F-Prot antivirus DoS

Out-of-bound memory access on CHM files parsing...

4.5AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2008/07/19 12:0 a.m.37 views

n.runs-SA-2008.002 - F-Prot Out-of-Bound Memory Access DoS &#40;remote&#41;

n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2008.002 16-Jul-2008 Vendor: FRISK F-Prot, http://www.f-prot.com Affected Products: F-Prot Anti-Virus all platforms Vulnerability: Out-of-Bound Memory Access DoS remote Risk: HIGH Vendor communication: 2008/01/22 initial notification t...

7.5AI score
Exploits0
seebug.org
seebug.org
added 2008/07/17 12:0 a.m.14 views

F-PROT杀毒软件CHM文件处理拒绝服务漏洞

BUGTRAQ ID: 30258 F-Prot Antivirus是一款UNIX平台上的杀毒软件。 F-Prot杀毒引擎在解析CHM文件头时存在拒绝服务漏洞,如果文件头的nbdir字段(根索引块的块数)值被设置为0xffffffff的话,指针计算就可能出现越界读取,导致拒绝服务的情况。 F-Prot Antivirus 4.4.4 F-Prot ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.f-prot.com/...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/12/14 12:0 a.m.31 views

GLSA-200612-12 : F-PROT Antivirus: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200612-12 F-PROT Antivirus: Multiple vulnerabilities F-Prot Antivirus version 4.6.7 fixes a heap-based buffer overflow, an infinite loop, and other unspecified vulnerabilities. Impact : Among other weaker impacts, a remote attacke...

7.5CVSS6.3AI score0.15964EPSS
Exploits2References4
Gentoo Linux
Gentoo Linux
added 2006/12/12 12:0 a.m.45 views

F-PROT Antivirus: Multiple vulnerabilities

Background F-Prot Antivirus is a FRISK Software antivirus program that can used with procmail. Description F-Prot Antivirus version 4.6.7 fixes a heap-based buffer overflow, an infinite loop, and other unspecified vulnerabilities. Impact Among other weaker impacts, a remote attacker could send an...

7.5CVSS7.6AI score0.15964EPSS
Exploits2
NVD
NVD
added 2006/12/10 2:28 a.m.24 views

CVE-2006-6407

F-Prot Antivirus for Linux x86 Mail Servers 4.6.6 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file...

5CVSS6.7AI score0.02146EPSS
Exploits1References3
Cvelist
Cvelist
added 2006/12/10 2:0 a.m.29 views

CVE-2006-6407

F-Prot Antivirus for Linux x86 Mail Servers 4.6.6 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file...

6.7AI score0.02146EPSS
Exploits1References3
CVE
CVE
added 2006/12/10 2:0 a.m.55 views

CVE-2006-6407

CVE-2006-6407 concerns F-Prot Antivirus for Linux x86 Mail Servers 4.6.6. The vulnerability allows remote attackers to bypass virus detection by injecting invalid characters into base64-encoded content within a multipart/mixed MIME file, demonstrated using the EICAR test file. This indicates a fl...

5CVSS7AI score0.02146EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder