Vulnerability Description
Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, F-Secure Protection Service, and others, allow remote attackers to bypass malware detection via a crafted RAR archive. NOTE: this might be related to CVE-2008-0792.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| F-Secure | F-Secure Anti-Virus | 2006 |
| F-Secure | F-Secure Anti-Virus Client Security | 6.03 |
| F-Secure | F-Secure Anti-Virus For Linux | 4.65 |
| F-Secure | F-Secure Anti-Virus For Workstations | 5.44 |
| F-Secure | F-Secure Anti-Virus Linux Client Security | 5.52 |
| F-Secure | F-Secure Internet Security | 2006 |
| F-Secure | F-Secure Protection Service For Business | <= 3.00 |
| F-Secure | F-Secure Protection Service For Consumers | <= 7.00 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/28919Vendor Advisory
- http://www.f-secure.com/security/fsc-2008-1.shtmlPatch
- http://www.securitytracker.com/id?1019405
- http://www.securitytracker.com/id?1019412
- http://www.securitytracker.com/id?1019413
- http://www.vupen.com/english/advisories/2008/0544/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40480
- http://secunia.com/advisories/28919Vendor Advisory
- http://www.f-secure.com/security/fsc-2008-1.shtmlPatch
- http://www.securitytracker.com/id?1019405
- http://www.securitytracker.com/id?1019412
- http://www.securitytracker.com/id?1019413
- http://www.vupen.com/english/advisories/2008/0544/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/40480
FAQ
What is CVE-2008-0910?
CVE-2008-0910 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, F-Secure Protection Service, and others, allow remote attackers to bypass malware de...
How severe is CVE-2008-0910?
CVE-2008-0910 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-0910?
Check the references section above for vendor advisories and patch information. Affected products include: F-Secure F-Secure Anti-Virus, F-Secure F-Secure Anti-Virus Client Security, F-Secure F-Secure Anti-Virus For Linux, F-Secure F-Secure Anti-Virus For Workstations, F-Secure F-Secure Anti-Virus Linux Client Security.