Búsqueda de    
Vulnerabilidad   
    Buscar 219043 Descripciones CVE y
99761 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.900362
Categoría:Malware
Título:F-Secure Products Malware Detection Bypass Vulnerability (Windows)
Resumen:This host is installed with F-Secure Product and is prone to; Malware Detection Bypass Vulnerability.
Descripción:Summary:
This host is installed with F-Secure Product and is prone to
Malware Detection Bypass Vulnerability.

Vulnerability Insight:
This flaw is due to bug in the antivirus scanning engine which doesn't process
the malformed crafted malware archives.

Vulnerability Impact:
Successful exploitation will let the attacker craft malwares in a
archive file and spread it across the network to gain access to sensitive
information or cause damage to the system.

Affected Software/OS:
F-Secure Anti-Virus 2009 and earlier

F-Secure Client Security 8.0 and earlier

F-Secure Internet Security 2009 and earlier

F-Secure Anti-Virus for MIMEsweeper 5.61 and earlier

F-Secure Anti-Virus for Workstations 8.0 and earlier

F-Secure Anti-Virus for Windows Servers 8.00 and earlier

F-Secure Internet Gatekeeper for Windows 6.61 and earlier

F-Secure Anti-Virus for Microsoft Exchange 7.10 and earlier

Solution:
Apply the patch from the referenced advisory.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: BugTraq ID: 34849
Common Vulnerability Exposure (CVE) ID: CVE-2009-1782
http://www.securityfocus.com/bid/34849
http://www.securitytracker.com/id?1022170
http://www.securitytracker.com/id?1022171
http://www.securitytracker.com/id?1022172
http://secunia.com/advisories/35008
http://www.vupen.com/english/advisories/2009/1262
XForce ISS Database: fsecure-rar-zip-security-bypass(50346)
https://exchange.xforce.ibmcloud.com/vulnerabilities/50346
CopyrightCopyright (C) 2009 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2022 E-Soft Inc. Todos los derechos reservados.