A Denial-of-Service (DoS) vulnerability was discovered in F-Secure & WithSecure products whereby the aegen.dll will go into an infinite loop when unpacking PE files. This eventually leads to scanning engine crash. The exploit can be triggered remotely by an attacker.
References
Link | Resource |
---|---|
https://www.withsecure.com/en/support/security-advisories | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
|
Information
Published : 2022-08-23 09:15
Updated : 2022-08-25 07:08
NVD link : CVE-2022-28882
Mitre link : CVE-2022-28882
JSON object : View
CWE
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
Products Affected
f-secure
- internet_gatekeeper
- atlant
- linux_security
- elements_collaboration_protection
- linux_security_64
- cloud_protection_for_salesforce
- elements_endpoint_protection
microsoft
- windows
apple
- macos