Описание
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.dll may go into an infinite loop when unpacking PE files. It is possible that this can crash the scanning engine.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:withsecure:business_suite:-:*:*:*:*:*:x86:*
cpe:2.3:a:withsecure:elements_endpoint_protection:*:*:*:*:*:*:x86:*
Конфигурация 2
Одно из
cpe:2.3:a:f-secure:internet_gatekeeper:-:*:*:*:*:-:*:*
cpe:2.3:a:f-secure:linux_security:-:*:*:*:*:*:x86:*
EPSS
Процентиль: 56%
0.00343
Низкий
4.3 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-835
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
A Denial-of-Service vulnerability was discovered in the F-Secure and WithSecure products where aerdl.dll may go into an infinite loop when unpacking PE files. It is possible that this can crash the scanning engine.
EPSS
Процентиль: 56%
0.00343
Низкий
4.3 Medium
CVSS3
7.5 High
CVSS3
Дефекты
CWE-835