Denial of Service Vulnerability in Kaspersky Internet Security Suite 2009
CVE-2008-5426

Currently unrated

Key Information:

Vendor: kaspersky
Status: Kaspersky Internet Security Suite
Vendor: CVE Published:; 11 December 2008

What is CVE-2008-5426?

Kaspersky Internet Security Suite 2009 exhibits a vulnerability allowing remote attackers to trigger a denial of service. This can occur when the software improperly processes multipart/mixed email messages containing multiple MIME parts or receives email messages with excessive 'Content-type: message/rfc822;' headers. As a result, the application may experience stack overflow or other resource consumption issues when confronted with large or complex email messages, potentially impacting its availability.

References

http://mime.recurity.com/cgi-bin/twiki/view/Main/AttackIntro

x_refsource_MISC

http://securityreason.com/securityalert/4721

third-party-advisoryx_refsource_SREASON

http://www.securityfocus.com/archive/1/499038/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 11, 2008
Vulnerability Reserved
Dec 11, 2008

kaspersky

What is CVE-2008-5426?

References

Timeline