119 matches found
F-PROT AntiVirus 6.2.1.4252 - Malformed Archive Infinite Loop Denial of Service
F-PROT AntiVirus 6.2.1.4252 - Malformed Archive Infinite Loop Denial of Service $ /opt/f-prot/fpscan snot.zip F-PROT Antivirus version 6.2.1.4252 built: 2008-04-28T16-44-10 FRISK Software International C Copyright 1989-2007 Engine version: 4.4.4.56 Virus signatures:...
F-PROT AntiVirus 6.2.1.4252 - Malformed Archive Infinite Loop Denial of Service
$ /opt/f-prot/fpscan snot.zip F-PROT Antivirus version 6.2.1.4252 built: 2008-04-28T16-44-10 FRISK Software International C Copyright 1989-2007 Engine version: 4.4.4.56 Virus signatures: 200806021748d9e53873896ea96bd4e8a470344c25b5 /opt/f-prot/antivir.def Scanning: - ^^ at this point the scanner...
Out-of-bounds
The scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allows remote attackers to cause a denial of service engine crash via a CHM file with a large nbdir value that triggers an out-of-bounds read...
CVE-2008-3244
The scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allows remote attackers to cause a denial of service engine crash via a CHM file with a large nbdir value that triggers an out-of-bounds read...
Code injection
Multiple unspecified vulnerabilities in the scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allow remote attackers to cause a denial of service via 1 a crafted UPX-compressed file, which triggers an engine crash; 2 a crafted Microsoft Office file, which triggers an infinite loop; ...
CVE-2008-3243
Multiple unspecified vulnerabilities in the scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allow remote attackers to cause a denial of service via 1 a crafted UPX-compressed file, which triggers an engine crash; 2 a crafted Microsoft Office file, which triggers an infinite loop; ...
CVE-2008-3243
Multiple unspecified vulnerabilities in the scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allow remote attackers to cause a denial of service via 1 a crafted UPX-compressed file, which triggers an engine crash; 2 a crafted Microsoft Office file, which triggers an infinite loop; ...
CVE-2008-3244
CVE-2008-3244 affects F-PROT Antivirus. The vulnerability arises in the scanning engine (before 4.4.4) used by F-PROT until version 6.0.9.0, where processing a CHM file with a large nb_dir value can trigger an out-of-bounds read, leading to remote denial of service (engine crash). Related OpenVAS...
CVE-2008-3244
The scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allows remote attackers to cause a denial of service engine crash via a CHM file with a large nbdir value that triggers an out-of-bounds read...
CVE-2008-3243
CVE-2008-3243 concerns the F-PROT Antivirus engine. Technical sources (CVE entry, GLSA 200904-14, and OpenVAS/Nessus summaries) indicate multiple DoS-type vulnerabilities in the engine prior to 4.4.4, affecting F-PROT Antivirus versions before 6.0.9.0. An attacker could remotely trigger denial of...
KLA10151 DoS vulnerability in F-Prot antivirus
An unspecified vulnerability was found in F-Prot antivirus. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely at a point related to the scanning engine. Original advisories Release notes Related products...
F-PROT Antivirus Engine < 4.4.4 Multiple File Handling DoS Vulnerabilities
The version of F-PROT Anti-Virus installed on the remote Windows host contains flaws in the way it handles CHM, UPX-compressed, ASPack-compressed and certain Microsoft office files. - A malformed CHM file containing '0xffffffff' in the 'nbdir' field could crash the application. - A malformed...
F-Prot antivirus DoS
Out-of-bound memory access on CHM files parsing...
n.runs-SA-2008.002 - F-Prot Out-of-Bound Memory Access DoS (remote)
n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2008.002 16-Jul-2008 Vendor: FRISK F-Prot, http://www.f-prot.com Affected Products: F-Prot Anti-Virus all platforms Vulnerability: Out-of-Bound Memory Access DoS remote Risk: HIGH Vendor communication: 2008/01/22 initial notification t...
F-PROT杀毒软件CHM文件处理拒绝服务漏洞
BUGTRAQ ID: 30258 F-Prot Antivirus是一款UNIX平台上的杀毒软件。 F-Prot杀毒引擎在解析CHM文件头时存在拒绝服务漏洞,如果文件头的nbdir字段(根索引块的块数)值被设置为0xffffffff的话,指针计算就可能出现越界读取,导致拒绝服务的情况。 F-Prot Antivirus 4.4.4 F-Prot ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.f-prot.com/...
GLSA-200612-12 : F-PROT Antivirus: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200612-12 F-PROT Antivirus: Multiple vulnerabilities F-Prot Antivirus version 4.6.7 fixes a heap-based buffer overflow, an infinite loop, and other unspecified vulnerabilities. Impact : Among other weaker impacts, a remote attacke...
F-PROT Antivirus: Multiple vulnerabilities
Background F-Prot Antivirus is a FRISK Software antivirus program that can used with procmail. Description F-Prot Antivirus version 4.6.7 fixes a heap-based buffer overflow, an infinite loop, and other unspecified vulnerabilities. Impact Among other weaker impacts, a remote attacker could send an...
CVE-2006-6407
F-Prot Antivirus for Linux x86 Mail Servers 4.6.6 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file...
CVE-2006-6407
F-Prot Antivirus for Linux x86 Mail Servers 4.6.6 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file...
CVE-2006-6407
CVE-2006-6407 concerns F-Prot Antivirus for Linux x86 Mail Servers 4.6.6. The vulnerability allows remote attackers to bypass virus detection by injecting invalid characters into base64-encoded content within a multipart/mixed MIME file, demonstrated using the EICAR test file. This indicates a fl...