Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when configured to scan inside compressed archives, allows remote attackers to execute arbitrary code via a crafted RPM compressed archive file, which triggers a buffer overflow.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2009-02-06 03:30
Updated : 2017-08-07 18:33
NVD link : CVE-2008-6085
Mitre link : CVE-2008-6085
JSON object : View
CWE
CWE-189
Numeric Errors
Products Affected
f-secure
- f-secure_anti-virus_for_mimesweeper
- f-secure_protection_service_for_consumers
- f-secure_anti-virus
- f-secure_linux_security
- f-secure_anti-virus_for_citrix_servers
- f-secure_protection_service_for_business
- f-secure_anti-virus_linux_server_security
- f-secure_internet_gatekeeper_for_windows
- f-secure_anti-virus_for_workstations
- f-secure_anti-virus_linux_client_security
- f-secure_home_server_security
- f-secure_anti-virus_for_windows_servers
- f-secure_anti-virus_for_microsoft_exchange
- f-secure_internet_gatekeeper_for_linux
- f-secure_internet_security
- f-secure_messaging_security_gateway
- f-secure_client_security