PT-2022-19278 · Withsecure+1 · Withsecure Products+1
Published
2022-05-23
·
Updated
2022-06-07
·
CVE-2022-28874
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
F-Secure Atlant (affected versions not specified)
WithSecure products (affected versions not specified)
Description
Multiple Denial-of-Service issues were discovered in F-Secure Atlant and certain WithSecure products. These issues occur when scanning fuzzed PE32-bit files, causing memory corruption and heap buffer overflow, which can eventually crash the scanning engine. The exploit can be triggered remotely by an attacker.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
F-Secure Atlant
Withsecure Products