F-Secure Multiple Products Web Console Pre-authentication Overflow RCE
High Nessus Plugin ID 21644
SynopsisAn antivirus application installed on the remote host is affected by a remote code execution vulnerability.
DescriptionThe version of F-Secure Internet Gatekeeper and/or F-Secure Anti-Virus for Microsoft Exchange installed on the remote host is affected by a buffer overflow condition in its web console. An unauthenticated, remote attacker can exploit this to cause a denial of service condition or the execution of arbitrary code.
Note that the web console by default accepts connections only from the local host; therefore, this issue can be exploited remotely only if the web console has been specifically configured to accept connections remotely.
SolutionApply the appropriate hotfix as described in the vendor advisory.