NVD脆弱性詳細
Exploit、PoC検索
CVE-2008-6085
概要

Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and others, when configured to scan inside compressed archives, allows remote attackers to execute arbitrary code via a crafted RPM compressed archive file, which triggers a buffer overflow.

公表日 2009年2月6日20:30
登録日 2021年1月29日13:48
最終更新日 2017年8月8日10:33
CVSS2.0 : HIGH
スコア 7.6
ベクター AV:N/AC:H/Au:N/C:C/I:C/A:C
攻撃元区分(AV) ネットワーク
攻撃条件の複雑さ(AC)
攻撃前の認証要否(Au) 不要
機密性への影響(C)
完全性への影響(I)
可用性への影響(A)
全ての特権を取得 はい
ユーザー権限を取得 いいえ
その他の権限を取得 いいえ
ユーザー操作が必要 はい
影響を受けるソフトウェアの構成
構成1 以上 以下 より上 未満
cpe:2.3:a:f-secure:f-secure_anti-virus:7.02:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:2006:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:2007:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:2007:*:second:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:2008:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:2009:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus_for_citrix_servers:*:*:*:*:*:*:*:* 7.00
cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:6.62:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:7.00:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus_for_microsoft_exchange:*:*:*:*:*:*:*:* 7.10
cpe:2.3:a:f-secure:f-secure_anti-virus_for_mimesweeper:*:*:*:*:*:*:*:* 5.61
cpe:2.3:a:f-secure:f-secure_anti-virus_for_windows_servers:*:*:*:*:*:*:*:* 8.00
cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:7.10:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus_for_workstations:7.11:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.30:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.52:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:5.53:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus_linux_client_security:*:*:*:*:*:*:*:* 5.54
cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:5.30:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:5.52:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus_linux_server_security:*:*:*:*:*:*:*:* 5.54
cpe:2.3:a:f-secure:f-secure_client_security:7.11:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_client_security:*:*:*:*:*:*:*:* 7.12
cpe:2.3:a:f-secure:f-secure_home_server_security:2009:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_internet_gatekeeper_for_linux:*:*:*:*:*:*:*:* 2.16
cpe:2.3:a:f-secure:f-secure_internet_gatekeeper_for_windows:*:*:*:*:*:*:*:* 6.61
cpe:2.3:a:f-secure:f-secure_internet_security:7.02:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_internet_security:2006:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_internet_security:2007:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_internet_security:2007:*:second:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_internet_security:2008:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_internet_security:2009:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_linux_security:*:*:*:*:*:*:*:* 7.01
cpe:2.3:a:f-secure:f-secure_messaging_security_gateway:4.0.7:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_messaging_security_gateway:*:*:*:*:*:*:*:* 5.0.4
cpe:2.3:a:f-secure:f-secure_protection_service_for_business:3.00:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_protection_service_for_business:*:*:*:*:*:*:*:* 3.10
cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:5.00:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:6.00:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:7.00:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_protection_service_for_consumers:*:*:*:*:*:*:*:* 8.00
関連情報、対策とツール
共通脆弱性一覧