Signature Detail
Short Name |
APP:MISC:F-SECURE-WEB-BO |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
F-Secure Products Web Console Buffer Overflow |
Release Date |
2013/01/07 |
Update Number |
2222 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
APP: F-Secure Products Web Console Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Web Console of multiple F-Secure products. A successful attack can lead to buffer overflow and arbitrary code execution. Failed exploits can cause denial-of-service.
Extended Description
Buffer overflow in the web console in F-Secure Anti-Virus for Microsoft Exchange 6.40, and Internet Gatekeeper 6.40 through 6.42 and 6.50 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors. NOTE: By default, the connections are only allowed from the local host.
Affected Products
- f-secure f-secure_anti-virus 6.40
- f-secure f-secure_anti-virus 6.40 (:ms_exchange)
- f-secure internet_gatekeeper 6.4
- f-secure internet_gatekeeper 6.41
- f-secure internet_gatekeeper 6.42
- f-secure internet_gatekeeper 6.50
References
- CVE: CVE-2006-2838