PT-2021-20226 · F Secure · F-Secure Anti-Virus

Published

2021-10-06

Updated

2021-10-14

CVE-2021-33602

CVSS v3.1

5.5

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions F-Secure Antivirus (affected versions not specified)

Description A vulnerability was discovered in the F-Secure Antivirus engine when it attempts to unpack a zip archive using the LZW decompression method, which can cause the scanning engine to crash. This issue can be exploited remotely by an attacker, resulting in a Denial-of-Service of the Anti-Virus engine.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-33602

Affected Products

F-Secure Anti-Virus

PT-2021-20226 · F Secure · F-Secure Anti-Virus

CVE-2021-33602

Related Identifiers

Affected Products

References · 4