cbcvebase.
CVE-2008-6085
published 2009-02-06

CVE-2008-6085: Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when…

PriorityP340high7.6CVSS 2.0
AVNACHAuNCCICAC
EPSS
5.54%
91.8th percentile
Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when configured to scan inside compressed archives, allows remote attackers to execute arbitrary code via a crafted RPM compressed archive file, which triggers a buffer overflow.

Affected

39 ranges· showing 25
VendorProductVersion rangeFixed in
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus_for_citrix_servers<= 7.00
f-securef-secure_anti-virus_for_microsoft_exchange<= 7.10
f-securef-secure_anti-virus_for_microsoft_exchange
f-securef-secure_anti-virus_for_microsoft_exchange
f-securef-secure_anti-virus_for_mimesweeper<= 5.61
f-securef-secure_anti-virus_for_windows_servers<= 8.00
f-securef-secure_anti-virus_for_workstations
f-securef-secure_anti-virus_for_workstations
f-securef-secure_anti-virus_linux_client_security<= 5.54
f-securef-secure_anti-virus_linux_client_security
f-securef-secure_anti-virus_linux_client_security
f-securef-secure_anti-virus_linux_client_security
f-securef-secure_anti-virus_linux_server_security<= 5.54
f-securef-secure_anti-virus_linux_server_security
f-securef-secure_anti-virus_linux_server_security
f-securef-secure_client_security<= 7.12
f-securef-secure_client_security
f-securef-secure_home_server_security
f-securef-secure_internet_gatekeeper_for_linux<= 2.16
f-securef-secure_internet_gatekeeper_for_windows<= 6.61
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.