Denial of Service Vulnerability in Avira AntiVir Engine by Avira
CVE-2013-4602

5.5MEDIUM

Key Information:

Vendor

Avira

Status
Antivir Mailgate
Antivir Mailgate Suite
Exchange Security
Antivir Webgate
Vendor
CVE Published:
12 February 2020

What is CVE-2013-4602?

A Denial of Service vulnerability identified in Avira AntiVir Engine versions prior to 8.2.12.58 can be exploited through an unspecified function in the PDF Scanner Engine, leading to an infinite loop situation. This flaw can disrupt the normal operation of the antivirus software, rendering it ineffective and leaving systems vulnerable. It is crucial for users of affected versions to update to the latest version to mitigate potential risks.

References

http://www.securityfocus.com/bid/60552
x_refsource_MISC
http://www.securitytracker.com/id/1028666
x_refsource_MISC
https://exchange.xforce.ibmcloud.com/vulnerabilities/85099
x_refsource_MISC

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.