Sybari AntiGen For Lotus Domino Denial Of Service Vulnerability

Bugtraq ID:	9880
Class:	Failure to Handle Exceptional Conditions
CVE:
Remote:	Yes
Local:	No
Published:	Mar 15 2004 12:00AM
Updated:	Mar 15 2004 12:00AM
Credit:	The vendor reported this vulnerability.
Vulnerable:	Sybari Software Antigen for Lotus Domino 7.0 Build 722 (SR2)
Not Vulnerable:	Sybari Software Antigen for Lotus Domino 7.0 Build 723 (SR2)

Sybari AntiGen For Lotus Domino Denial Of Service Vulnerability

Sybari AntiGen For Lotus Domino has been reported prone to a remote denial of service vulnerability. The issue presents itself when a malicious encrypted ZIP archive is encountered.

This will result in a denial of service to the affected Sybari AntiGen virus detection software. Although unconfirmed, it is conjectured that subsequent to the denial of service attack malicious programs may not be detected by Sybari AntiGen.

Sybari AntiGen For Lotus Domino Denial Of Service Vulnerability

There is no exploit required.

Sybari AntiGen For Lotus Domino Denial Of Service Vulnerability

Solution:
The vendor has released an upgrade to address this issue:


Sybari Software Antigen for Lotus Domino 7.0 Build 722 (SR2)

• Sybari Software Antigen for Lotus Domino Version 7.0 Build 723 (SR2)
  http://www.sybari.com/download/licensed.asp

Sybari AntiGen For Lotus Domino Denial Of Service Vulnerability

References:

• Sybari's Antigen 7.0 for Lotus Domino Homepage (Sybari Software)