CVE-2008-3244

The scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allows remote attackers to cause a denial of service (engine crash) via a CHM file with a large nb_dir value that triggers an out-of-bounds read.

Published: Jul 21, 2008
Updated: Nov 9, 2025
CVE: CVE-2008-3244
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
f-prot / f-prot_antivirus	3.11b	3.11b.x
f-prot / f-prot_antivirus	3.16b	3.16b.x
f-prot / f-prot_antivirus	3.14	3.14.x
f-prot / f-prot_antivirus	3.13a	3.13a.x
f-prot / f-prot_antivirus	4.6.6	4.6.6.x
f-prot / f-prot_antivirus	6.0.5.1	6.0.5.1.x
f-prot / f-prot_antivirus	3.16c	3.16c.x
f-prot / f-prot_antivirus	3.13	3.13.x
f-prot / f-prot_antivirus	3.15	3.15.x
f-prot / f-prot_antivirus	3.16e	3.16e.x
f-prot / f-prot_antivirus	3.12c	3.12c.x
f-prot / f-prot_antivirus	6.0.7.1	6.0.7.1.x
f-prot / f-prot_antivirus	6.0.6.3	6.0.6.3.x
f-prot / f-prot_antivirus	3.15a	3.15a.x
f-prot / f-prot_antivirus	3.12a	3.12a.x
f-prot / f-prot_antivirus	3.12b	3.12b.x
f-prot / f-prot_antivirus	6.0.5	6.0.5.x
f-prot / f-prot_antivirus	6.0.6	6.0.6.x
f-prot / f-prot_antivirus	3.16	3.16.x
f-prot / f-prot_antivirus	3.14a	3.14a.x
f-prot / f-prot_antivirus	6.0.6.4	6.0.6.4.x
f-prot / f-prot_antivirus	3.14c	3.14c.x
f-prot / f-prot_antivirus	6.0.8	6.0.8.x
f-prot / f-prot_antivirus	3.16d	3.16d.x
f-prot / scanning_engine	-	4.3.2.x
f-prot / f-prot_antivirus	3.14d	3.14d.x
f-prot / f-prot_antivirus	3.16f	3.16f.x
f-prot / f-prot_antivirus	3.12	3.12.x
f-prot / f-prot_antivirus	6.0.7	6.0.7.x
f-prot / f-prot_antivirus	6.0.6.1	6.0.6.1.x
f-prot / f-prot_antivirus	3.15b	3.15b.x
f-prot / f-prot_antivirus	3.14e	3.14e.x
f-prot / f-prot_antivirus	3.14b	3.14b.x
f-prot / f-prot_antivirus	3.12d	3.12d.x
f-prot / f-prot_antivirus	3.16a	3.16a.x

Vulnerability Database

300,991

CVE-2008-3244

Deep Security Visibility Without the Complexity