Vulnerability Description
Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service (memory consumption) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Scan Engine | <= 5.1.4.24 |
| Symantec | Symantec Antivirus Clearswift | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Filtering Domino Mpe | <= 3.0.12 |
| Symantec | Symantec Antivirus Messaging | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Microsoft Sharepoint | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Ms Isa | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Network Attached Storage | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Scan Engine | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Scan Engine Caching | <= 4.3.16.39 |
| Symantec | Symantec Mail Security Exchange | <= 4.6.5.12 |
Related Weaknesses (CWE)
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=666
- http://secunia.com/advisories/29140Vendor Advisory
- http://www.securityfocus.com/bid/27911
- http://www.securitytracker.com/id?1019503
- http://www.symantec.com/avcenter/security/Content/2008.02.27.html
- http://www.vupen.com/english/advisories/2008/0680
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=666
- http://secunia.com/advisories/29140Vendor Advisory
- http://www.securityfocus.com/bid/27911
- http://www.securitytracker.com/id?1019503
- http://www.symantec.com/avcenter/security/Content/2008.02.27.html
- http://www.vupen.com/english/advisories/2008/0680
FAQ
What is CVE-2008-0308?
CVE-2008-0308 is a vulnerability with a CVSS score of 7.1 (HIGH). Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service (memor...
How severe is CVE-2008-0308?
CVE-2008-0308 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-0308?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Scan Engine, Symantec Symantec Antivirus Clearswift, Symantec Symantec Antivirus Filtering Domino Mpe, Symantec Symantec Antivirus Messaging, Symantec Symantec Antivirus Microsoft Sharepoint.