NOD32 Email Message Denial Of Service Vulnerability Network Vulnerability

Summary

This host is installed with NOD32 Antivirus and is prone to Denial of Service vulnerability.

Impact

Successful exploitation will let the attacker execute arbitrary codes in the context of the application and can crash the application.

Solution

Upgrade to the latest version 3.x, http://www.eset.com/download

Insight

This flaw is due to improper handling of multipart/mixed e-mail messages with many MIME parts and Email messages with many Content-type: message/rfc822 headers.

Affected

NOD32 AntiVirus version 2.70.0039.000 and prior.

References

http://www.packetstormsecurity.org/papers/general/mime-dos.txt

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-5425

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Firefox XUL Parsing Denial of Service Vulnerability (Linux)
Connect back to SOCKS4 server
Apple Safari Denial of Service Vulnerability (Win) - Apr09
ClamAV 'cli_pdf()' and 'cli_scanicon()' Denial of Service Vulnerabilities (Win
Adobe Flash Media Server Remote Denial of Service Vulnerability (August-2011)

NOD32 Email Message Denial of Service Vulnerability

Take action and discover your vulnerabilities