F-prot : Security Vulnerabilities, CVEs, Published In 2008
F-Prot 4.6.8 for GNU/Linux allows remote attackers to bypass anti-virus protection via a crafted ELF program with a "corrupted" header that still allows the program to be executed. NOTE: due to an error in the initial disclosure, F-secure was incorrectly stated as the vendor.
Max CVSS
5.0
EPSS Score
1.91%
Published
2008-12-29
Updated
2018-10-11
The scanning engine in F-Prot Antivirus 6.2.1 4252 allows remote attackers to cause a denial of service (infinite loop) via a malformed ZIP archive, probably related to invalid offsets.
Max CVSS
5.0
EPSS Score
14.86%
Published
2008-08-04
Updated
2017-09-29
The scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allows remote attackers to cause a denial of service (engine crash) via a CHM file with a large nb_dir value that triggers an out-of-bounds read.
Max CVSS
4.3
EPSS Score
1.60%
Published
2008-07-21
Updated
2017-08-08
Multiple unspecified vulnerabilities in the scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allow remote attackers to cause a denial of service via (1) a crafted UPX-compressed file, which triggers an engine crash; (2) a crafted Microsoft Office file, which triggers an infinite loop; or (3) an ASPack-compressed file, which triggers an engine crash.
Max CVSS
4.3
EPSS Score
1.47%
Published
2008-07-21
Updated
2017-08-08
4 vulnerabilities found