Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

F-PROT Attachment Handling DoS

Medium

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote host is running the F-PROT Antivirus product.

This version of F-PROT is vulnerable to a remote Denial of Service (DoS) attack when processing certain file types. Specifically, malformed CHM, UPX-compressed, ASPack-compressed and Microsoft Office documents can cause the remote antivirus engine to crash. An attacker exploiting this flaw would only need the ability to send an email with a malformed attachment.

Solution

Versions 4.4.4 and 6.0.9.0 are listed as not being vulnerable to this attack.