F-PROT Attachment Handling DoS
Medium Nessus Network Monitor Plugin ID 4593
SynopsisThe remote host is vulnerable to a Denial of Service (DoS) attack.
DescriptionThe remote host is running the F-PROT Antivirus product.
This version of F-PROT is vulnerable to a remote Denial of Service (DoS) attack when processing certain file types. Specifically, malformed CHM, UPX-compressed, ASPack-compressed and Microsoft Office documents can cause the remote antivirus engine to crash. An attacker exploiting this flaw would only need the ability to send an email with a malformed attachment.
SolutionVersions 4.4.4 and 220.127.116.11 are listed as not being vulnerable to this attack.