Vulnerability Details CVE-2008-5409
Unspecified vulnerability in the pdf.xmd module in (1) BitDefender Free Edition 10 and Antivirus Standard 10, (2) BullGuard Internet Security 8.5, and (3) Software602 Groupware Server 6.0.08.1118 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file, possibly related to included compressed streams that were processed with the ASCIIHexDecode filter. NOTE: some of these details are obtained from third party information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.244
EPSS Ranking 95.8%
CVSS Severity
CVSS v2 Score 9.3
References
- http://milw0rm.com/sploits/2008-BitDefenderDOS.zip
- http://osvdb.org/50010
- http://osvdb.org/50103
- http://osvdb.org/50205
- http://secunia.com/advisories/27805
- http://secunia.com/advisories/32789
- http://secunia.com/advisories/32814
- http://www.securityfocus.com/bid/32396
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46750
- https://www.exploit-db.com/exploits/7178
- http://milw0rm.com/sploits/2008-BitDefenderDOS.zip
- http://osvdb.org/50010
- http://osvdb.org/50103
- http://osvdb.org/50205
- http://secunia.com/advisories/27805
- http://secunia.com/advisories/32789
- http://secunia.com/advisories/32814
- http://www.securityfocus.com/bid/32396
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46750
- https://www.exploit-db.com/exploits/7178
Products affected by CVE-2008-5409
-
cpe:2.3:a:bitdefender:antivirus:10
-
cpe:2.3:a:bitdefender:bitdefender:10
-
cpe:2.3:a:bullguard:internet_security:8.5
-
cpe:2.3:a:software602:groupware_server:6.0.08.1118