header-logo
Suggest Exploit
vendor:
F-PROT Antivirus
by:
kokanin
7.8
CVSS
HIGH
Denial of Service
400
CWE
Product Name: F-PROT Antivirus
Affected Version From: 6.2.1.4252
Affected Version To: 6.2.1.4252
Patch Exists: No
Related CWE: CVE-2008-3284
CPE: a:frisk_software_international:f-prot_antivirus
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2008

F-PROT Antivirus 6.2.1.4252 Infinite Loop Denial of Service Vulnerability

F-PROT Antivirus is prone to a denial-of-service vulnerability because the application fails to properly handle certain files. An attacker can exploit this issue to cause the application to enter an infinite loop, denying service to legitimate users.

Mitigation:

No known mitigation
Source

Exploit-DB raw data:

$ /opt/f-prot/fpscan snot.zip

F-PROT Antivirus version 6.2.1.4252 (built: 2008-04-28T16-44-10)
FRISK Software International (C) Copyright 1989-2007

Engine version: 4.4.4.56
Virus signatures: 200806021748d9e53873896ea96bd4e8a470344c25b5
                  (/opt/f-prot/antivir.def)

Scanning: -

^^ at this point the scanner gets stuck in an infinite loop and will not
finish or continue to other files if told to scan a directory.

If you use F-PROT you probably won't be reading this on account of
your scanner hanging, woops.
--
kokanin

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/6174.zip (2008-snot.zip.bla)

# milw0rm.com [2008-07-31]

Navigation

Suggest Exploit

Services By CQR