CVE-2008-0309

Stack-based buffer overflow in Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).

Published: Feb 28, 2008
Updated: Apr 13, 2023
CVE: CVE-2008-0309
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
symantec / symantec_antivirus_filtering_domino_mpe	-	3.0.12.x
symantec / symantec_mail_security_for_microsoft_exchange	-	4.6.5.12.x
symantec / symantec_antivirus_scan_engine_for_ms_isa	-	4.3.16.39.x
symantec / symantec_antivirus_scan_engine_clearswift	-	4.3.16.39.x
symantec / symantec_antivirus_scan_engine	-	4.3.16.39.x
symantec / scan_engine	-	5.1.4.24.x
symantec / symantec_antivirus_scan_engine_for_microsoft_sharepoint	-	4.3.16.39.x
symantec / symantec_antivirus_scan_engine_messaging	-	4.3.16.39.x
symantec / symantec_antivirus_scan_engine_caching	-	4.3.16.39.x
symantec / symantec_mail_security_for_microsoft_exchange	-	5.0.4.363.x
symantec / symantec_antivirus_network_attached_storage	-	4.3.16.39.x

Vulnerability Database

289,599

CVE-2008-0309