Published: 04/08/2008 Updated: 29/09/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The scanning engine in F-Prot Antivirus 6.2.1 4252 allows remote malicious users to cause a denial of service (infinite loop) via a malformed ZIP archive, probably related to invalid offsets.

Vulnerable Product	Search on Vulmon	Subscribe to Product
f-prot f-prot antivirus 6.2.1.4252
f-prot scanning engine 4.4.4.56

$ /opt/f-prot/fpscan snotzip F-PROT Antivirus version 6214252 (built: 2008-04-28T16-44-10) FRISK Software International (C) Copyright 1989-2007 Engine version: 44456 Virus signatures: 200806021748d9e53873896ea96bd4e8a470344c25b5 (/opt/f-prot/antivirdef) Scanning: - ^^ at this point the scanner gets stuck in an infinite ...

CWE-399 http://seclists.org/fulldisclosure/2008/Jul/0569.html http://www.securityfocus.com/bid/30461 http://secunia.com/advisories/31313 http://www.securitytracker.com/id?1020612 http://www.vupen.com/english/advisories/2008/2283 https://exchange.xforce.ibmcloud.com/vulnerabilities/44134 https://www.exploit-db.com/exploits/6174 https://nvd.nist.gov https://www.exploit-db.com/exploits/6174/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-3447

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect