Vulnerability Description
Multiple unspecified vulnerabilities in the scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allow remote attackers to cause a denial of service via (1) a crafted UPX-compressed file, which triggers an engine crash; (2) a crafted Microsoft Office file, which triggers an infinite loop; or (3) an ASPack-compressed file, which triggers an engine crash.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| F-Prot | F-Prot Antivirus | 3.11b |
| F-Prot | Scanning Engine | <= 4.3.2 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/31118PatchVendor Advisory
- http://www.f-prot.com/download/ReleaseNotesWindows.txt
- http://www.securityfocus.com/bid/30258
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43868
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43869
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43870
- http://secunia.com/advisories/31118PatchVendor Advisory
- http://www.f-prot.com/download/ReleaseNotesWindows.txt
- http://www.securityfocus.com/bid/30258
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43868
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43869
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43870
FAQ
What is CVE-2008-3243?
CVE-2008-3243 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Multiple unspecified vulnerabilities in the scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allow remote attackers to cause a denial of service via (1) a crafted UPX-compressed file, w...
How severe is CVE-2008-3243?
CVE-2008-3243 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-3243?
Check the references section above for vendor advisories and patch information. Affected products include: F-Prot F-Prot Antivirus, F-Prot Scanning Engine.