CVE-2008-0308
Last modified
CVE-2008-0308 is a vulnerability of currently unknown severity. Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service (memory consumption) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).. EPSS estimates a 2.55% chance of exploitation in the next 30 days.
Description
Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service (memory consumption) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Scan Engine | <= 5.1.4.24 |
| Symantec | Symantec Antivirus Clearswift | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Filtering Domino Mpe | <= 3.0.12 |
| Symantec | Symantec Antivirus Messaging | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Microsoft Sharepoint | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Ms Isa | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Network Attached Storage | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Scan Engine | <= 4.3.16.39 |
| Symantec | Symantec Antivirus Scan Engine Caching | <= 4.3.16.39 |
| Symantec | Symantec Mail Security Exchange | <= 4.6.5.12 |
| Symantec | Symantec Mail Security Exchange | <= 5.0.4.363 |
References
- http://secunia.com/advisories/29140Vendor Advisory
- http://secunia.com/advisories/29140Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2008-0308?
How severe is CVE-2008-0308?
How do I fix CVE-2008-0308?
Are you affected by CVE-2008-0308?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST