CVE-2008-0308
Published Feb 28, 2008
Last updated 14 years ago
Overview
- Description
- Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service (memory consumption) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.1
- Impact score
- 6.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:N/A:C
Weaknesses
- nvd@nist.gov
- CWE-399
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:symantec:scan_engine:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AB87EEAE-C3E0-4145-B218-9D408F92019D",
"versionEndIncluding": "5.1.4.24"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_antivirus_clearswift:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2338E29E-E63A-46BE-B07C-67360F06407E",
"versionEndIncluding": "4.3.16.39"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_antivirus_filtering_domino_mpe:*:*:aix:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "16D7344B-86C6-4F85-A3BC-F0923BE01BBA",
"versionEndIncluding": "3.0.12"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_antivirus_filtering_domino_mpe:*:*:linux:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "852B500B-D411-4423-95A8-EEC05AFEAC31",
"versionEndIncluding": "3.0.12"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_antivirus_filtering_domino_mpe:*:*:solaris:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C0B93FAE-4014-4417-A46A-3F52667E223F",
"versionEndIncluding": "3.0.12"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_antivirus_messaging:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5F8F198A-1410-4FDD-9906-BFBFE7056603",
"versionEndIncluding": "4.3.16.39"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_antivirus_microsoft_sharepoint:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8A4202FC-FF3F-4450-A3DE-7077FDCDE62A",
"versionEndIncluding": "4.3.16.39"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_antivirus_ms_isa:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4ABF5B1A-8CC8-42AD-95E9-4957EE4B0FA1",
"versionEndIncluding": "4.3.16.39"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_antivirus_network_attached_storage:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "90C81F8F-8176-4EB2-B61B-08A3F8958628",
"versionEndIncluding": "4.3.16.39"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_antivirus_scan_engine:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E648A3CF-2DB0-4578-8FF4-E8DB7DEE249F",
"versionEndIncluding": "4.3.16.39"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_antivirus_scan_engine_caching:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F10B5FA2-D60A-4ECD-98D5-24E2AC227604",
"versionEndIncluding": "4.3.16.39"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_mail_security_exchange:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7FEB2137-CCAA-436B-9152-0C82A922AE75",
"versionEndIncluding": "4.6.5.12"
},
{
"criteria": "cpe:2.3:a:symantec:symantec_mail_security_exchange:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "95F252AB-3D74-46C1-BF05-8FEE8F87308F",
"versionEndIncluding": "5.0.4.363"
}
],
"operator": "OR"
}
]
}
]