5.8 - CVE-2008-0792

Executive Summary

Informations
Name	CVE-2008-0792	First vendor Publication	2008-02-14
Vendor	Cve	Last vendor Modification	2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:N)
Cvss Base Score	5.8	Attack Range	Network
Cvss Impact Score	4.9	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, F-Secure Protection Service, and others, allow remote attackers to bypass malware detection via a crafted CAB archive.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0792

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-264	Permissions, Privileges, and Access Controls

CPE : Common Platform Enumeration

Type	Description	Count
Application	F-Secure F-Secure Anti-Virus cpe:2.3:a:f-secure:f-secure_anti-virus:2008:::::::* cpe:2.3:a:f-secure:f-secure_anti-virus:2007:::::::* cpe:2.3:a:f-secure:f-secure_anti-virus:2007:second_edition:::::: cpe:2.3:a:f-secure:f-secure_anti-virus:2006:::::::*	4
Application	F-Secure F-Secure Anti-Virus Client Security cpe:2.3:a:f-secure:f-secure_anti-virus_client_security:7.10:::::::* cpe:2.3:a:f-secure:f-secure_anti-virus_client_security:7.01:::::::* cpe:2.3:a:f-secure:f-secure_anti-virus_client_security:6.04:::::::* cpe:2.3:a:f-secure:f-secure_anti-virus_client_security:6.03:::::::*	4
Application	F-Secure F-Secure Anti-Virus For Linux cpe:2.3:a:f-secure:f-secure_anti-virus_for_linux:4.65:::::::*	1
Application	F-Secure F-Secure Anti-Virus For Workstations cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:7.10:::::::* cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:7.00:::::::* cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:5.44:::::::*	3
Application	F-Secure F-Secure Anti-Virus Linux Client Security cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.53:::::::* cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.52:::::::*	2
Application	F-Secure F-Secure Internet Security cpe:2.3:a:f-secure:f-secure_internet_security:2008:::::::* cpe:2.3:a:f-secure:f-secure_internet_security:2007:second_edition:::::: cpe:2.3:a:f-secure:f-secure_internet_security:2007:::::::* cpe:2.3:a:f-secure:f-secure_internet_security:2006:::::::*	4
Application	F-Secure F-Secure Protection Service For Business cpe:2.3:a:f-secure:f-secure_protection_service_for_business:3.00:::::::*	1
Application	F-Secure F-Secure Protection Service For Consumers cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:7.00:::::::* cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:6.00:::::::* cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:5.00:::::::*	3

Open Source Vulnerability Database (OSVDB)

Id	Description
42903	F-Secure Multiple Products Crafted CAB Archive Scanning Bypass

Sources (Detail)

http://secunia.com/advisories/28919
http://www.f-secure.com/security/fsc-2008-1.shtml
http://www.securitytracker.com/id?1019405
http://www.securitytracker.com/id?1019412
http://www.securitytracker.com/id?1019413
http://www.vupen.com/english/advisories/2008/0544/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/40480

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 23:15:01	Multiple Updates
2024-11-28 12:14:54	Multiple Updates
2021-05-05 01:04:31	Multiple Updates
2021-05-04 12:07:07	Multiple Updates
2021-04-22 01:07:33	Multiple Updates
2020-05-23 01:39:07	Multiple Updates
2020-05-23 00:21:16	Multiple Updates
2017-08-08 09:23:52	Multiple Updates
2016-04-26 17:07:41	Multiple Updates
2013-05-11 00:09:29	Multiple Updates

Type	Count
CWE ID(s)	1
CPE ID(s)	22
Sources(s)	7
osvdb(s)	1

5.8 - CVE-2008-0792

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Open Source Vulnerability Database (OSVDB)

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU