Denial of Service Vulnerability in Symantec Antivirus Products
CVE-2008-0308

Currently unrated

Key Information:

Vendor: Symantec
Status: Symantec Antivirus Filtering Domino Mpe; Symantec Antivirus Ms Isa; Symantec Antivirus Scan Engine; Symantec Antivirus Messaging
Vendor: CVE Published:; 28 February 2008

Summary

The vulnerability in Symantec Decomposer affects certain antivirus products by allowing remote attackers to trigger a denial of service condition. This is accomplished through the submission of a specially crafted RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp). When processed, this malformed file can lead to excessive memory consumption, ultimately compromising the availability of the service.

References

http://www.symantec.com/avcenter/security/Content/2008.02...

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2008/0680

vdb-entryx_refsource_VUPEN

http://labs.idefense.com/intelligence/vulnerabilities/dis...

third-party-advisoryx_refsource_IDEFENSE

Timeline

Vulnerability published
Feb 28, 2008
Vulnerability Reserved
Jan 16, 2008