CVE-2008-6085
Published Feb 6, 2009
Last updated 7 years ago
Overview
- Description
- Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when configured to scan inside compressed archives, allows remote attackers to execute arbitrary code via a crafted RPM compressed archive file, which triggers a buffer overflow.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.6
- Impact score
- 10
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-189
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus:7.02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B028C22E-399E-4A90-9673-64E4D510273E"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus:2006:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9A6B8424-EED8-4A09-9A9C-FC5F76A9FAF5"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus:2007:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1106DE08-DE9A-488B-8C5D-28E353CDEEEB"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus:2007:*:second:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "62204373-31FA-4F28-AA22-D4D6F3B80F9B"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus:2008:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B47EC4EB-268A-4BB9-820D-AA3DB8D1A655"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus:2009:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4B68C319-313F-4CA5-9B37-D9860071E763"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_citrix_servers:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7C3858F1-B23F-4E45-BD23-C8262AD37F50",
"versionEndIncluding": "7.00"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F4D0AD44-C784-4019-B92C-A368092C815C",
"versionEndIncluding": "7.10"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:6.62:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D622E750-A9AB-4EF3-BC2F-D7C3FFE8C961"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:7.00:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85EEA770-211A-4568-BB9F-9FE76D7BFCB4"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_mimesweeper:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6B6FA161-27C8-40A5-BAF7-4907D67E3C82",
"versionEndIncluding": "5.61"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_windows_servers:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FDF7866B-1F6D-49C8-8013-2A6974D42D95",
"versionEndIncluding": "8.00"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:7.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7D9F9488-8DA8-48A9-9A11-B5E0D7AA9A7E"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:7.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8C775FD8-A757-41A6-BBC3-29BC9D2D12A8"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1D3E6352-6BF9-4FE6-A572-07A31972A28D",
"versionEndIncluding": "5.54"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.30:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9523BF6D-AF64-4CFE-B017-695B6BB175C2"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.52:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E77AB622-B899-46FD-9DFA-1964B57A9458"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.53:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F8DB2DD7-86DC-440A-B8D9-0A84034E808F"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5BD6D628-460F-4AF7-971E-401D58E48AF1",
"versionEndIncluding": "5.54"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:5.30:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "66AB396E-475C-404F-BEE1-66DE9C3A7555"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:5.52:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D0E6FC4F-F768-43FF-9627-DF41CD7D799C"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_client_security:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7A5AE9AF-11E3-4CC5-BEE7-6ED5CF6FCEA5",
"versionEndIncluding": "7.12"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_client_security:7.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A8FC353-E7D7-4097-B206-C0ACB654E0E3"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_home_server_security:2009:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "13A9FDBE-1AAD-435A-BECF-2871864EAFA4"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_internet_gatekeeper_for_linux:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4664D4A0-EB01-4274-9E1D-8EA5313F935A",
"versionEndIncluding": "2.16"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_internet_gatekeeper_for_windows:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C73ADB10-61D7-46E9-B293-1C798E297A5F",
"versionEndIncluding": "6.61"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_internet_security:7.02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "89DC5D86-0C4A-4F94-83A2-DB21B868ACCB"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_internet_security:2006:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C788A5AB-C847-476C-9767-C6711F2D4EA1"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_internet_security:2007:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3972C7F1-8B78-4A5D-8A75-C6CA01E997DF"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_internet_security:2007:*:second:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "94858828-3626-4654-AB6A-597A49C79284"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_internet_security:2008:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "08ED9945-DC9F-4F4F-B2EB-B63986BCC7D6"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_internet_security:2009:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D77467E5-A143-4720-93EE-29B399417065"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_linux_security:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3F6ED823-E3F3-4444-86B5-BBD6D711B5B9",
"versionEndIncluding": "7.01"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_messaging_security_gateway:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7A5B1FA4-33A1-4EAD-A20F-C9A4AD64939C",
"versionEndIncluding": "5.0.4"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_messaging_security_gateway:4.0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "25DB325A-39E6-4938-9761-D8DCD5A57C96"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_protection_service_for_business:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A2E6D2C-5520-41DE-AF1D-7E47F9A99CE7",
"versionEndIncluding": "3.10"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_protection_service_for_business:3.00:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6123A21D-BBB4-48D8-9701-7BFB637628C0"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C339068C-F74F-4B4B-AD15-09457CC85458",
"versionEndIncluding": "8.00"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:5.00:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F11E5127-4DC8-48A4-9AF5-1C148B71C7E1"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:6.00:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6FB0D1BB-B119-4996-859A-39348AEF36B3"
},
{
"criteria": "cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:7.00:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "721447B1-F577-48AB-A312-34306C485866"
}
],
"operator": "OR"
}
]
}
]