F-Secure Archive Handling RCE (FSC-2008-2)
Critical Nessus Plugin ID 31682
SynopsisA antivirus application installed on the remote host is affected by a remote code execution vulnerability.
DescriptionThe version of F-Secure Anti-Virus installed on the remote host fails to handle specially crafted archives. A remote attacker can exploit this issue to crash the application or execute arbitrary code with SYSTEM privileges.
SolutionEnable auto-updates if using F-Secure Internet Security 2006-08.
Alternatively, apply the appropriate hotfix as referenced in the vendor advisory.