PT-2008-4660 · Frisk · F-Prot Antivirus

Published

2008-07-21

Updated

2017-08-08

CVE-2008-3244

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: F-Prot Antivirus versions prior to 6.0.9.0 F-Prot Antivirus scanning engine versions prior to 4.4.4

Description: The issue allows remote attackers to cause a denial of service, resulting in an engine crash, by exploiting a CHM file with a large nb dir value. This triggers an out-of-bounds read.

Recommendations: For F-Prot Antivirus versions prior to 6.0.9.0, update to version 6.0.9.0 or later to resolve the issue. For F-Prot Antivirus scanning engine versions prior to 4.4.4, update to version 4.4.4 or later to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2008-3244

Affected Products

F-Prot Antivirus

PT-2008-4660 · Frisk · F-Prot Antivirus

CVE-2008-3244

Weakness Enumeration

Related Identifiers

Affected Products

References · 8