BitDefender Infinite Loop Denial of Service
Gravità: : Critico
Identificatori CVE: CVE-2008-5409
Data notifica: 30 giugno 2011
Descrizione
Unspecified vulnerability in the pdf.xmd module in (1) BitDefender Free Edition 10 and Antivirus Standard 10, (2) BullGuard Internet Security 8.5, and (3) Software602 Groupware Server 6.0.08.1118 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file, possibly related to included compressed streams that were processed with the ASCIIHexDecode filter. NOTE: some of these details are obtained from third party information.
Informazioni esposizione:
Trend Micro Deep Security shields networks through Deep Packet Inspection (DPI) rules. Trend Micro customers using OfficeScan with Intrusion Defense Firewall (IDF) plugin are also protected from attacks using these vulnerabilities. Please refer to the filter number and filter name when applying appropriate DPI and/or IDF rules.
Soluzioni
Trend Micro Deep Security DPI Rule Number: 1003069
Trend Micro Deep Security DPI Rule Name: 1003069 - BitDefender Infinite Loop Denial Of Service
Software e versione interessati:
- bitdefender antivirus 10
- bitdefender bitdefender 10
- bullguard internet_security 8.5
- software602 groupware_server 6.0.08.1118