QwikSec

Security Database

CVE

CWE

Training

CVE-2008-1412

Published: Mar 20, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Unspecified vulnerability in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, allows remote attackers to execute arbitrary code or cause a denial of service (hang or crash) via a malformed archive that triggers an unhandled exception, as demonstrated by the PROTOS GENOME test suite for Archive Formats.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://support.f-secure.com/enu/corporate/downloads/hotfixes/av-mimesweeper-hotfixes.shtml

x_refsource_CONFIRM

http://www.f-secure.com/security/fsc-2008-2.shtml

x_refsource_CONFIRM

fsecure-archives-code-execution(41234)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_VUPEN

vdb-entry

x_refsource_BID

http://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html

x_refsource_MISC

http://support.f-secure.com/enu/corporate/downloads/hotfixes/av-cs-hotfixes.shtml

x_refsource_CONFIRM

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_SECTRACK

http://www.ee.oulu.fi/research/ouspg/protos/testing/c10/archive/

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.