CVE-2004-0830 — Anti-virus vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

1.1%

top 22.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F-secure Anti-virus F-secure Content Scanner Server F-secure Internet Gatekeeper

Timeline

PublishedSep 9

Latest updateApr 29

Description

The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure Anti-Virus for Microsoft Exchange 6.01 and earlier, and F-Secure Internet Gatekeeper 6.32 and earlier allow remote attackers to cause a denial of service (service crash due to unhandled exception) via a certain malformed packet.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶NVDf-secure/f-secure_anti-virus6.01, 6.2, 6.21+2

▶NVDf-secure/f-secure_content_scanner_server6.31

▶NVDf-secure/internet_gatekeeper6.3, 6.31, 6.32+2

Patches

Patch: www.f-secure.com ↗Patch: www.idefense.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-ppj8-2j67-3h92: The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6↗2022-04-29

▶

CVEList

CVE-2004-0830: The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6↗2004-09-24

▶