CVE-2008-6085

Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when configured to scan inside compressed archives, allows remote attackers to execute arbitrary code via a crafted RPM compressed archive file, which triggers a buffer overflow.

CVSS v2.0 7.6 HIGH

7.6^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:H/Au:N/C:C/I:C/A:C

Exploitability : 4.9 / Impact : 10.0

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.f-secure.com/security/fsc-2008-3.shtml	Patch Vendor Advisory
http://www.securityfocus.com/bid/31846
http://www.securitytracker.com/id?1021073
http://secunia.com/advisories/32352	Vendor Advisory
http://www.vupen.com/english/advisories/2008/2874
https://exchange.xforce.ibmcloud.com/vulnerabilities/46016

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:f-secure:f-secure_internet_security:2007::second:::::
	cpe:2.3:a:f-secure:f-secure_internet_security:2006:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:7.10:::::::*
	cpe:2.3:a:f-secure:f-secure_linux_security::::::::
	cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:6.00:::::::*
	cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:5.00:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:5.30:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus:2007:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus:2006:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.52:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.30:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:7.11:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus:2008:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus:2007::second:::::
	cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:7.00:::::::*
	cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:7.00:::::::*
	cpe:2.3:a:f-secure:f-secure_internet_security:2008:::::::*
	cpe:2.3:a:f-secure:f-secure_protection_service_for_business::::::::
	cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange::::::::
	cpe:2.3:a:f-secure:f-secure_anti-virus:7.02:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:6.62:::::::*
	cpe:2.3:a:f-secure:f-secure_internet_gatekeeper_for_linux::::::::
	cpe:2.3:a:f-secure:f-secure_client_security::::::::
	cpe:2.3:a:f-secure:f-secure_anti-virus_for_windows_servers::::::::
	cpe:2.3:a:f-secure:f-secure_client_security:7.11:::::::*
	cpe:2.3:a:f-secure:f-secure_protection_service_for_business:3.00:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security::::::::
	cpe:2.3:a:f-secure:f-secure_internet_gatekeeper_for_windows::::::::
	cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.53:::::::*
	cpe:2.3:a:f-secure:f-secure_home_server_security:2009:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus:2009:::::::*
	cpe:2.3:a:f-secure:f-secure_internet_security:7.02:::::::*
	cpe:2.3:a:f-secure:f-secure_internet_security:2007:::::::*
	cpe:2.3:a:f-secure:f-secure_messaging_security_gateway:4.0.7:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus_for_citrix_servers::::::::
	cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:5.52:::::::*
	cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers::::::::
	cpe:2.3:a:f-secure:f-secure_internet_security:2009:::::::*
	cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security::::::::
	cpe:2.3:a:f-secure:f-secure_anti-virus_for_mimesweeper::::::::
	cpe:2.3:a:f-secure:f-secure_messaging_security_gateway::::::::

Information

Published : 2009-02-06 03:30

Updated : 2017-08-07 18:33

NVD link : CVE-2008-6085

Mitre link : CVE-2008-6085

JSON object : View

CWE

CWE-189

Numeric Errors

Products Affected

f-secure

f-secure_anti-virus_for_mimesweeper
f-secure_protection_service_for_consumers
f-secure_anti-virus
f-secure_linux_security
f-secure_anti-virus_for_citrix_servers
f-secure_protection_service_for_business
f-secure_anti-virus_linux_server_security
f-secure_internet_gatekeeper_for_windows
f-secure_anti-virus_for_workstations
f-secure_anti-virus_linux_client_security
f-secure_home_server_security
f-secure_anti-virus_for_windows_servers
f-secure_anti-virus_for_microsoft_exchange
f-secure_internet_gatekeeper_for_linux
f-secure_internet_security
f-secure_messaging_security_gateway
f-secure_client_security

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.f-secure.com/security/fsc-2008-3.shtml", "name": "http://www.f-secure.com/security/fsc-2008-3.shtml", "tags": ["Patch", "Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/31846", "name": "31846", "tags": [], "refsource": "BID"}, {"url": "http://www.securitytracker.com/id?1021073", "name": "1021073", "tags": [], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/32352", "name": "32352", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.vupen.com/english/advisories/2008/2874", "name": "ADV-2008-2874", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46016", "name": "fsecure-multipleproducts-rpm-bo(46016)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when configured to scan inside compressed archives, allows remote attackers to execute arbitrary code via a crafted RPM compressed archive file, which triggers a buffer overflow."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-189"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2008-6085", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.6, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "HIGH", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 4.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2009-02-06T11:30Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_internet_security:2007:*:second:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_internet_security:2006:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:7.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_linux_security:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "7.01"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:6.00:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:5.00:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:5.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus:2007:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus:2006:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.52:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:7.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus:2008:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus:2007:*:second:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:7.00:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:7.00:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_internet_security:2008:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_protection_service_for_business:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.10"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "7.10"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus:7.02:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:6.62:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_internet_gatekeeper_for_linux:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "2.16"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_client_security:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "7.12"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_windows_servers:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "8.00"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_client_security:7.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_protection_service_for_business:3.00:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "5.54"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_internet_gatekeeper_for_windows:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "6.61"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.53:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_home_server_security:2009:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus:2009:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_internet_security:7.02:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_internet_security:2007:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_messaging_security_gateway:4.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_citrix_servers:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "7.00"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:5.52:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "8.00"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_internet_security:2009:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "5.54"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_mimesweeper:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "5.61"}, {"cpe23Uri": "cpe:2.3:a:f-secure:f-secure_messaging_security_gateway:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "5.0.4"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-08-08T01:33Z"}

7.6 /10