CVE-2008-0308

CWE-3996 documents5 sources

Severity

7.1HIGH

EPSS

1.7%

top 17.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

10

Symantec Scan Engine Symantec Symantec Antivirus Clearswift Symantec Symantec Antivirus Filtering Domino MPE +7 more

Timeline

PublishedFeb 28

Latest updateMay 1

Description

Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service (memory consumption) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages10 packages

▶NVDsymantec/symantec_antivirus_scan_engine4.3.16.39

▶NVDsymantec/symantec_antivirus_scan_engine_caching4.3.16.39

▶NVDsymantec/scan_engine5.1.4.24

▶NVDsymantec/symantec_antivirus_ms_isa4.3.16.39

▶NVDsymantec/symantec_antivirus_messaging4.3.16.39

🔴Vulnerability Details

2

GHSA

GHSA-5mvp-g227-prcq: Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5↗2022-05-01

▶

CVEList

CVE-2008-0308: Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5↗2008-02-28

▶

📋Vendor Advisories

1

Red Hat

am-utils: insecure usage of temporary files↗2008-02-14

▶

💬Community

2

Bugzilla

CVE-2008-6800 samba: race condition in winbindd may lead to DoS↗2009-05-08

▶

Bugzilla

CVE-2008-1078 am-utils: insecure usage of temporary files↗2008-02-29

▶

CVE-2008-0308 (HIGH CVSS 7.1) | Symantec Decomposer | cvebase.io