Unrated severityNVD Advisory· Published Feb 28, 2008· Updated Apr 23, 2026
CVE-2008-0308
CVE-2008-0308
Description
Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service (memory consumption) via a malformed RAR file to the Internet Content Adaptation Protocol (ICAP) port (1344/tcp).
Affected products
12- cpe:2.3:a:symantec:symantec_antivirus_clearswift:*:*:*:*:*:*:*:*Range: <=4.3.16.39
cpe:2.3:a:symantec:symantec_antivirus_filtering_domino_mpe:*:*:aix:*:*:*:*:*+ 2 more
- cpe:2.3:a:symantec:symantec_antivirus_filtering_domino_mpe:*:*:aix:*:*:*:*:*range: <=3.0.12
- cpe:2.3:a:symantec:symantec_antivirus_filtering_domino_mpe:*:*:linux:*:*:*:*:*range: <=3.0.12
- cpe:2.3:a:symantec:symantec_antivirus_filtering_domino_mpe:*:*:solaris:*:*:*:*:*range: <=3.0.12
- cpe:2.3:a:symantec:symantec_antivirus_messaging:*:*:*:*:*:*:*:*Range: <=4.3.16.39
- cpe:2.3:a:symantec:symantec_antivirus_microsoft_sharepoint:*:*:*:*:*:*:*:*Range: <=4.3.16.39
- cpe:2.3:a:symantec:symantec_antivirus_ms_isa:*:*:*:*:*:*:*:*Range: <=4.3.16.39
- cpe:2.3:a:symantec:symantec_antivirus_network_attached_storage:*:*:*:*:*:*:*:*Range: <=4.3.16.39
- cpe:2.3:a:symantec:symantec_antivirus_scan_engine:*:*:*:*:*:*:*:*Range: <=4.3.16.39
- cpe:2.3:a:symantec:symantec_antivirus_scan_engine_caching:*:*:*:*:*:*:*:*Range: <=4.3.16.39
- cpe:2.3:a:symantec:symantec_mail_security_exchange:*:*:*:*:*:*:*:*Range: <=4.6.5.12
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6News mentions
0No linked articles in our index yet.