CVE-2008-6661 - Multiple integer overflows in the scanning engine in Bitdefender for Linux 7.60825 and earlier allow

CVE-2008-6661

Summary

Multiple integer overflows in the scanning engine in Bitdefender for Linux 7.60825 and earlier allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed (1) NeoLite and (2) ASProtect packed PE file.

References

Vulnerable Configurations

cpe:2.3:a:bitdefender:bitdefender_antivirus:*:*:*:*:*:*:*:*
cpe:2.3:a:bitdefender:bitdefender_antivirus:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux:*:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 17-08-2017 - 01:29)
Impact:
Exploitability:

CWE

CWE-189

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	32751
bugtraq	20081210 [IVIZ-08-012] Bitdefender antivirus for Linux multiple vulnerabilities
misc	http://www.ivizsecurity.com/security-advisory-iviz-sr-08012.html
osvdb	50826
secunia	33240
vupen	ADV-2008-3459
xf	bitdefender-pe-overflow(47219)

Last major update

17-08-2017 - 01:29

Published

07-04-2009 - 23:30

Last modified

17-08-2017 - 01:29