{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"F-Secure Internet Security 2006 ;","product":{"name":"Internet Security","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Internet Security 2007 Second Edition ;","product":{"name":"Internet Security","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Internet Security 2007 ;","product":{"name":"Internet Security","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Client Security versions 7.12 et ant\u00e9rieures ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Antivirus 2007 Second Edition ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"produits bas\u00e9s sur F-Secure Protection Service for Consumers versions 8.00 et ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus Client Security versions 5.54 et ant\u00e9rieures ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"produits bas\u00e9s sur F-Secure Protection Service for Business versions 3.10 et ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus Linux Server Security versions 5.54 et ant\u00e9rieures ;","product":{"name":"Server Security","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Antivirus 2008 ;","product":{"name":"N/A","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Anti-Virus for Linux Servers version 4.65.","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus for Workstations versions 7.11 et ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Anti-Virus for Citrix Servers versions 7.00 et ant\u00e9rieures ;","product":{"name":"N/A","vendor":{"name":"Citrix","scada":false}}},{"description":"F-Secure Antivirus 2007 ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"F-Secure Anti-Virus for Windows Servers versions 8.00 et ant\u00e9rieures ;","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"F-Secure Linux Security versions 7.01 et ant\u00e9rieures ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Antivirus 2006 ;","product":{"name":"N/A","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Internet Security 2008 ;","product":{"name":"Internet Security","vendor":{"name":"ESET","scada":false}}},{"description":"F-Secure Home Server Security 2009 ;","product":{"name":"Server Security","vendor":{"name":"ESET","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte lors du traitement des archives RPM\npar de nombreux produits F-Secure. Cette vuln\u00e9rabilit\u00e9 n'est exploitable\nque si l'antivirus a \u00e9t\u00e9 configur\u00e9 pour analyser les fichiers contenus\ndans l'archive. Elle permet l'ex\u00e9cution de code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[],"links":[],"reference":"CERTA-2008-AVI-517","revisions":[{"description":"version initiale.","revision_date":"2008-10-22T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 dans de nombreux produits <span\nclass=\"textit\">F-Secure</span> permet l'ex\u00e9cution de code arbitraire \u00e0\ndistance.\n","title":"Vuln\u00e9rabilit\u00e9 dans les produits F-Secure","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 F-Secure FSC-2008-3 du 21 octobre 2008","url":"http://www.f-secure.com/security/fsc-2008-3.shtml"}]}