F-secure : Security Vulnerabilities, CVEs, Published In 2007
Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070522 allow remote attackers to cause a denial of service (file scanning infinite loop) via certain crafted (1) ARJ archives or (2) FSG packed files.
Max CVSS
10.0
EPSS Score
6.24%
Published
2007-05-31
Updated
2018-10-16
Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070619 allow remote attackers to bypass scanning via a crafted header in a (1) LHA or (2) RAR archive.
Max CVSS
9.3
EPSS Score
0.91%
Published
2007-06-20
Updated
2017-07-29
Buffer overflow in the LHA decompression component in F-Secure anti-virus products for Microsoft Windows and Linux before 20070529 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted LHA archive, related to an integer wrap, a similar issue to CVE-2006-4335.
Max CVSS
7.5
EPSS Score
16.90%
Published
2007-05-31
Updated
2018-10-16
Format string vulnerability in F-Secure Anti-Virus Client Security 6.02 allows local users to cause a denial of service and possibly gain privileges via format string specifiers in the Management Server name field on the Communication settings page.
Max CVSS
7.2
EPSS Score
0.05%
Published
2007-03-21
Updated
2018-10-16
Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, including Internet Security 2005, 2006 and 2007; Anti-Virus 2005, 2006 and 2007; and Solutions based on F-Secure Protection Service for Consumers 6.40 and earlier allows local users to gain privileges via a crafted I/O request packet (IRP), related to IOCTL (Input/Output Control) and "access validation of the address space."
Max CVSS
7.2
EPSS Score
0.04%
Published
2007-05-31
Updated
2017-07-29
The fsmsh.dll host module in F-Secure Policy Manager Server 7.00 and earlier allows remote attackers to cause a denial of service (application crash) via NTFS reserved words in filenames in URLs.
Max CVSS
5.0
EPSS Score
15.67%
Published
2007-05-31
Updated
2017-07-29
F-Secure Anti-Virus for Windows Servers 7.0 64-bit edition allows local users to bypass virus scanning by using the system32 directory to store a crafted (1) archive or (2) packed executable. NOTE: in many environments, this does not cross privilege boundaries because any process able to write to system32 could also shut off F-Secure Anti-Virus.
Max CVSS
1.9
EPSS Score
0.04%
Published
2007-10-01
Updated
2017-07-29
7 vulnerabilities found