CVE-2008-1412: Input Validation
First published: Thu Mar 20 2008(Updated: )
Unspecified vulnerability in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, allows remote attackers to execute arbitrary code or cause a denial of service (hang or crash) via a malformed archive that triggers an unhandled exception, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| F-secure F-secure Mobile Antivirus For Windows Mobile | =2003 | |
| F-secure F-secure Anti-virus | =2007-second_edition | |
| F-secure F-secure Anti-virus | =2008 | |
| F-secure F-secure Anti-virus | =2006 | |
| F-secure F-secure Anti-virus For Workstations | <=7.11 | |
| F-secure F-secure Internet Security | =2008 | |
| F-secure F-secure Protection Service For Business | <=3.10 | |
| F-secure F-secure Protection Service For Consumers | <=7.00 | |
| F-secure F-secure Client Security | <=7.11 | |
| F-secure F-secure Mobile Security For Series 80 | ||
| F-secure F-secure Mobile Antivirus For Windows Mobile | =6 | |
| F-secure F-secure Internet Security | =2007-second_edition | |
| F-secure F-secure Mobile Antivirus For Windows Mobile | =5.0 | |
| F-secure F-secure Anti-virus | =2007 | |
| F-secure F-secure Anti-virus For Linux | <=4.65 | |
| F-secure F-secure Anti-virus Linux Client Security | <=5.54 | |
| F-secure F-secure Anti-virus Client Security | <=6.04 | |
| F-secure F-secure Internet Security | =2006 | |
| F-secure F-secure Mobile Antivirus For S60 | =2nd_edition | |
| F-secure F-secure Internet Security | =2007 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html
- http://www.f-secure.com/security/fsc-2008-2.shtml
- http://secunia.com/advisories/29397
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c10/archive/
- http://support.f-secure.com/enu/corporate/downloads/hotfixes/av-cs-hotfixes.shtml
- http://support.f-secure.com/enu/corporate/downloads/hotfixes/av-mimesweeper-hotfixes.shtml
- http://www.securityfocus.com/bid/28282
- http://www.securitytracker.com/id?1019618
- http://www.securitytracker.com/id?1019619
- http://www.securitytracker.com/id?1019620
- http://www.vupen.com/english/advisories/2008/0903/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41234
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/first-publish-date
- agent/remedy
- agent/description
- agent/event
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/f-secure
- canonical/f-secure f-secure mobile antivirus for windows mobile
- version/f-secure f-secure mobile antivirus for windows mobile/2003
- canonical/f-secure f-secure anti-virus
- version/f-secure f-secure anti-virus/2007-second_edition
- version/f-secure f-secure anti-virus/2008
- version/f-secure f-secure anti-virus/2006
- canonical/f-secure f-secure anti-virus for workstations
- version/f-secure f-secure anti-virus for workstations/7.11
- canonical/f-secure f-secure internet security
- version/f-secure f-secure internet security/2008
- canonical/f-secure f-secure protection service for business
- version/f-secure f-secure protection service for business/3.10
- canonical/f-secure f-secure protection service for consumers
- version/f-secure f-secure protection service for consumers/7.00
- canonical/f-secure f-secure client security
- version/f-secure f-secure client security/7.11
- canonical/f-secure f-secure mobile security for series 80
- version/f-secure f-secure mobile antivirus for windows mobile/6
- version/f-secure f-secure internet security/2007-second_edition
- version/f-secure f-secure mobile antivirus for windows mobile/5.0
- version/f-secure f-secure anti-virus/2007
- canonical/f-secure f-secure anti-virus for linux
- version/f-secure f-secure anti-virus for linux/4.65
- canonical/f-secure f-secure anti-virus linux client security
- version/f-secure f-secure anti-virus linux client security/5.54
- canonical/f-secure f-secure anti-virus client security
- version/f-secure f-secure anti-virus client security/6.04
- version/f-secure f-secure internet security/2006
- canonical/f-secure f-secure mobile antivirus for s60
- version/f-secure f-secure mobile antivirus for s60/2nd_edition
- version/f-secure f-secure internet security/2007