CVE-2008-0308 Details

CVE-2008-0308

Published: 2008-02-28
Last Modified: 2011-03-08
CVE Author: NIST National Vulnerability Database
CVE Assigner: cve@mitre.org
Summary

Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service (memory consumption) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).

Analysis
Common Vulnerability Score System v2.0
Severity High
Base Score 7.1/10
Exploit Score 8.6/10
Access Vector Network
Access Complexity Medium
Authentication None
Impact Score 6.9/10
Confidentiality Impact None
Availability Impact Complete
Integrity Impact None
Vector String AV:N/AC:M/Au:N/C:N/I:N/A:C
Common Vulnerability Score System v3.1

NIST has not assigned a CVSSv3.1 Score.

Products Reported
CPE Vulnerable Start Excluding
cpe:2.3:a:symantec:scan_engine:*:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_antivirus_clearswift:*:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_antivirus_filtering_domino_mpe:*:*:aix:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_antivirus_filtering_domino_mpe:*:*:linux:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_antivirus_filtering_domino_mpe:*:*:solaris:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_antivirus_messaging:*:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_antivirus_microsoft_sharepoint:*:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_antivirus_ms_isa:*:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_antivirus_network_attached_storage:*:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_antivirus_scan_engine:*:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_antivirus_scan_engine_caching:*:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_mail_security_exchange:*:*:*:*:*:*:*:* Yes - -
cpe:2.3:a:symantec:symantec_mail_security_exchange:*:*:*:*:*:*:*:* Yes - -
References

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=666
http://secunia.com/advisories/29140
http://www.securityfocus.com/bid/27911
http://www.securitytracker.com/id?1019503
http://www.symantec.com/avcenter/security/Content/2008.02.27.html
http://www.vupen.com/english/advisories/2008/0680

CVE ID
CVE-2008-0308
Published
2008-02-28
Modified
2011-03-08
CVSSv2.0
High
PCI Compliance
Fail
US-CERT Alert
No
CWE
CWE-399

You never have to pay for a vulnerability scanning and management software again.

Tired of paying a subscription 'per asset' or 'per IP'? Well you can officially cancel your current subscription. Mageni provides a free, open source and enterprise-ready vulnerability scanning and management platform which helps you to find, prioritize, remediate and manage your vulnerabilities.