F-secure F-secure Anti-virus — known CVE vulnerabilities
Every CVE whose affected-product data names F-secure F-secure Anti-virus, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (35)
CVE-2004-0234 — CVSS 10.0 (critical): Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam…
CVE-2007-2967 — CVSS 10.0 (critical): Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070522 allow remote attackers to cause a denial of service…
CVE-2006-6409 — CVSS 10.0 (critical): F-Secure Anti-Virus for Linux Gateways 4.65 allows remote attackers to cause a denial of service (possibly fatal scan error), and possibly…
CVE-2007-3300 — CVSS 9.3 (critical): Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070619 allow remote attackers to bypass scanning via a…
CVE-2006-2838 — CVSS 7.6 (high): Buffer overflow in the web console in F-Secure Anti-Virus for Microsoft Exchange 6.40, and Internet Gatekeeper 6.40 through 6.42 and 6.50…
CVE-2008-6085 — CVSS 7.6 (high): Integer overflow in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, and…
CVE-2006-0337 — CVSS 7.5 (high): Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52…
CVE-2008-0910 — CVSS 7.5 (high): Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, F-Secure Protection…
CVE-2004-1762 — CVSS 7.5 (high): Unknown vulnerability in F-Secure Anti-Virus (FSAV) 4.52 for Linux before Hotfix 3 allows the Sober.D worm to bypass FASV.
CVE-2007-2966 — CVSS 7.5 (high): Buffer overflow in the LHA decompression component in F-Secure anti-virus products for Microsoft Windows and Linux before 20070529 allows…
CVE-2005-0350 — CVSS 7.5 (high): Heap-based buffer overflow in multiple F-Secure Anti-Virus and Internet Security products allows remote attackers to execute arbitrary code…
CVE-2005-3664 — CVSS 7.5 (high): Heap-based buffer overflow in Kaspersky Anti-Virus Engine, as used in Kaspersky Personal 5.0.227, Anti-Virus On-Demand Scanner for Linux…
CVE-2007-1557 — CVSS 7.2 (high): Format string vulnerability in F-Secure Anti-Virus Client Security 6.02 allows local users to cause a denial of service and possibly gain…
CVE-2005-3546 — CVSS 7.2 (high): suid.cgi scripts in F-Secure (1) Internet Gatekeeper for Linux before 2.15.484 and (2) Anti-Virus Linux Gateway before 2.16 are installed…
CVE-2007-2965 — CVSS 7.2 (high): Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, including Internet Security 2005, 2006 and…
CVE-2008-1412 — CVSS 6.8 (medium): Unspecified vulnerability in multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through…
CVE-2004-0235 — CVSS 6.4 (medium): Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive…
CVE-2004-2405 — CVSS 6.4 (medium): Buffer overflow in multiple F-Secure Anti-Virus products, including F-Secure Anti-Virus 5.42 and earlier, allows remote attackers to bypass…
CVE-2008-0792 — CVSS 5.8 (medium): Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, F-Secure Protection…
CVE-2004-2220 — CVSS 5.0 (medium): F-Secure Anti-Virus for Microsoft Exchange 6.30 and 6.31 does not properly detect certain password-protected files in a ZIP file, which…
CVE-2004-0830 — CVSS 5.0 (medium): The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure Anti-Virus for Microsoft Exchange 6.01…
CVE-2006-3489 — CVSS 5.0 (medium): F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers…
CVE-2006-0338 — CVSS 5.0 (medium): Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier…
CVE-2005-3468 — CVSS 5.0 (medium): Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 6.40 and Internet Gatekeeper 6.40 to 6.42 allows limited…
CVE-2004-2442 — CVSS 5.0 (medium): Multiple interpretation error in various F-Secure Anti-Virus products, including Workstation 5.43 and earlier, Windows Servers 5.50 and…
CVE-2010-1425 — CVSS 5.0 (medium): F-Secure Internet Security 2010 and earlier; Anti-Virus for Microsoft Exchange 9 and earlier, and for MIMEsweeper 5.61 and earlier…
CVE-2006-3490 — CVSS 5.0 (medium): F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers…
CVE-2012-1463 — CVSS 4.3 (medium): The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus…
CVE-2007-5143 — CVSS 1.9 (low): F-Secure Anti-Virus for Windows Servers 7.0 64-bit edition allows local users to bypass virus scanning by using the system32 directory to…