Published: 10/12/2008 Updated: 19/10/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 935

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Unspecified vulnerability in the pdf.xmd module in (1) BitDefender Free Edition 10 and Antivirus Standard 10, (2) BullGuard Internet Security 8.5, and (3) Software602 Groupware Server 6.0.08.1118 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file, possibly related to included compressed streams that were processed with the ASCIIHexDecode filter. NOTE: some of these details are obtained from third party information.

Vulnerable Product	Search on Vulmon	Subscribe to Product
software602 groupware server 6.0.08.1118
bitdefender antivirus 10
bullguard internet security 8.5
bitdefender bitdefender 10

Deny Of Service and infinite loop in BitDefender (module pdfxmd) /* ProTeuS @ cihms */ tested on pdfxmd BitDefender's pdf engine by Alexandru Matei (01,Oct 8 2008), CRC32=A393F805 and on pdfxmd last update by the moment of publication Deny of service occurs during parsing of included compressed streams (gotta use bdcexe /arc option) in cause ...

CWE-119 http://www.securityfocus.com/bid/32396 http://secunia.com/advisories/32789 http://secunia.com/advisories/32814 http://osvdb.org/50205 http://milw0rm.com/sploits/2008-BitDefenderDOS.zip http://osvdb.org/50103 http://secunia.com/advisories/27805 http://osvdb.org/50010 https://exchange.xforce.ibmcloud.com/vulnerabilities/46750 https://www.exploit-db.com/exploits/7178 https://nvd.nist.gov https://www.exploit-db.com/exploits/7178/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-5409

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect