Format string vulnerability in the logging functionality in BitDefender AntiVirus 7.2 through 9 allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in file or directory name.
The product uses a function that accepts a format string as an argument, but the format string originates from an external source.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Bitdefender | Softwin | 7.2 (including) | 7.2 (including) |
Bitdefender | Softwin | 8.0 (including) | 8.0 (including) |
Bitdefender | Softwin | 9.0 (including) | 9.0 (including) |