CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2009-1783
https://notcve.org/view.php?id=CVE-2009-1783
22 May 2009 — Multiple FRISK Software F-Prot anti-virus products, including Antivirus for Exchange, Linux on IBM zSeries, Linux x86 File Servers, Linux x86 Mail Servers, Linux x86 Workstations, Solaris Mail Servers, Antivirus for Windows, and others, allow remote attackers to bypass malware detection via a crafted CAB archive. Múltiples productos antivirus FRISK Software F-Prot, incluidos: Antivirus for Exchange, Linux on IBM zSeries, Linux x86 File Servers, Linux x86 Mail Servers, Linux x86 Workstations, Solaris Mail Se... • http://blog.zoller.lu/2009/04/advisory-f-prot-frisk-cab-bypass.html • CWE-20: Improper Input Validation •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2008-5747
https://notcve.org/view.php?id=CVE-2008-5747
29 Dec 2008 — F-Prot 4.6.8 for GNU/Linux allows remote attackers to bypass anti-virus protection via a crafted ELF program with a "corrupted" header that still allows the program to be executed. NOTE: due to an error in the initial disclosure, F-secure was incorrectly stated as the vendor. F-Prot 4.6.8 para GNU/Linux, permite a atacantes remotos evitar la protección antivirus a través del programa ELF manipulado mediante una cabecera "corrupta" que permite que el programa sea ejecutado. NOTA: debido a un error en la reve... • http://secunia.com/advisories/34700 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 9%CPEs: 2EXPL: 1CVE-2008-3447 – F-PROT AntiVirus 6.2.1.4252 - Malformed Archive Infinite Loop Denial of Service
https://notcve.org/view.php?id=CVE-2008-3447
04 Aug 2008 — The scanning engine in F-Prot Antivirus 6.2.1 4252 allows remote attackers to cause a denial of service (infinite loop) via a malformed ZIP archive, probably related to invalid offsets. El motor de exploración de F-Prot Antivirus 6.2.1 4252 permite a atacantes remotos provocar una denegación de servicio (bucle infinito) a través de archivos ZIP malformados, posiblemente relacionado con offsets inválidos. • https://www.exploit-db.com/exploits/6174 • CWE-399: Resource Management Errors •
CVSS: 5.5EPSS: 1%CPEs: 35EXPL: 0CVE-2008-3243
https://notcve.org/view.php?id=CVE-2008-3243
21 Jul 2008 — Multiple unspecified vulnerabilities in the scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allow remote attackers to cause a denial of service via (1) a crafted UPX-compressed file, which triggers an engine crash; (2) a crafted Microsoft Office file, which triggers an infinite loop; or (3) an ASPack-compressed file, which triggers an engine crash. Múltiples vulnerabilidades sin especificar en el motor de análisis anterior a 4.4.4 en el F-Prrot Antivirus anterior a 6.0.9.0, permite a atacant... • http://secunia.com/advisories/31118 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 1%CPEs: 35EXPL: 0CVE-2008-3244
https://notcve.org/view.php?id=CVE-2008-3244
21 Jul 2008 — The scanning engine before 4.4.4 in F-Prot Antivirus before 6.0.9.0 allows remote attackers to cause a denial of service (engine crash) via a CHM file with a large nb_dir value that triggers an out-of-bounds read. Motor de análisis anterior a 4.4.4 en F-Prot Antivirus anterior a 6.0.9.0, permite a atacantes remotos provocar una denegación de servicio (caída de motor) a través de un fichero CHM con un valor nb_dir largo, lo que provoca una lectura fuera de rango. • http://secunia.com/advisories/31118 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2006-6407
https://notcve.org/view.php?id=CVE-2006-6407
10 Dec 2006 — F-Prot Antivirus for Linux x86 Mail Servers 4.6.6 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file. F-Prot Antivirus para Linux x86 Mail Servers 4.6.6 permite a atacantes remotos evitar una detección de virus, insertando caracteres inválidos en un contenido codificado base 64 en un fichero MIME multipart/mixed, como se demuestra con el fichero de testeo EICAR. • http://www.quantenblog.net/security/virus-scanner-bypass •
CVSS: 7.8EPSS: 9%CPEs: 25EXPL: 2CVE-2006-6293 – F-Prot AntiVirus 4.6.6 - CHM Heap Overflow (PoC)
https://notcve.org/view.php?id=CVE-2006-6293
05 Dec 2006 — Heap-based buffer overflow in FRISK Software F-Prot Antivirus before 4.6.7 allows user-assisted remote attackers to execute arbitrary code via a crafted CHM file. NOTE: this issue has at least a partial overlap with CVE-2006-6294. Desbordamiento de búfer basado en montículo en FRISK Software F-Prot Antivirus 3.16f anterior al 4.6.7 permite a atacantes con la intervención del usuario ejecutar código de su elección a través de ficheros CHM manipulados. NOTA: Esta vulnerabilidad tiene, por lo menos una parte, ... • https://www.exploit-db.com/exploits/2893 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •