Summary
| Detail | |||
|---|---|---|---|
| Vendor | F-Secure | First view | 2009-02-06 |
| Product | F-Secure Anti-Virus For Citrix Servers | Last view | 2010-04-15 |
| Version | 7.00 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:f-secure:f-secure_anti-virus_for_citrix_servers | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 5 | 2010-04-15 | CVE-2010-1425 | F-Secure Internet Security 2010 and earlier; Anti-Virus for Microsoft Exchange 9 and earlier, and for MIMEsweeper 5.61 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, and for Linux 4.02 and earlier; Anti-Virus 2010 and earlier; Home Server Security 2009; Protection Service for Consumers 9 and earlier, for Business - Workstation security 9 and earlier, for Business - Server Security 8 and earlier, and for E-mail and Server security 9 and earlier; Mac Protection build 8060 and earlier; Client Security 9 and earlier; and various Anti-Virus products for Windows, Linux, and Citrix; does not properly detect malware in crafted (1) 7Z, (2) GZIP, (3) CAB, or (4) RAR archives, which makes it easier for remote attackers to avoid detection. |
| 7.6 | 2009-02-06 | CVE-2008-6085 | Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when configured to scan inside compressed archives, allows remote attackers to execute arbitrary code via a crafted RPM compressed archive file, which triggers a buffer overflow. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 100% (1) | CWE-189 | Numeric Errors |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 63811 | F-Secure Multiple Products Multiple Archive Files Detection Bypass |
| 49189 | F-Secure Multiple Products Crafted RPM File Handling Overflow |
OpenVAS Exploits
| id | Description |
|---|---|
| 2009-03-13 | Name : F-Secure Product(s) Integer Overflow Vulnerability (Linux) File : nvt/gb_fsecure_prdts_int_overflow_vuln_lin.nasl |
| 2009-03-13 | Name : F-Secure Product(s) Integer Overflow Vulnerability (Win) File : nvt/gb_fsecure_prdts_int_overflow_vuln_win.nasl |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2010-04-14 | Name: An antivirus application installed on the remote host is affected by a scan e... File: fsecure_fsc_2010_01.nasl - Type: ACT_GATHER_INFO |
| 2008-12-11 | Name: An antivirus application installed on the remote host is affected by a remote... File: fsecure_fsc_2008_03.nasl - Type: ACT_GATHER_INFO |
