 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.900363 |
| Category: | Malware |
| Title: | F-Secure Products Security Bypass Vulnerability - Linux |
| Summary: | F-Secure Product is prone to a security bypass vulnerability. |
| Description: | Summary: F-Secure Product is prone to a security bypass vulnerability. Vulnerability Insight: Error in the file parsing engine can be exploited to bypass the anti-virus scanning functionality via a specially crafted ZIP or RAR file. Vulnerability Impact: Successful attacks can allow attackers to bypass scanning detection and possibly launch further attacks on the vulnerable system. Affected Software/OS: F-Secure Linux Security prior to 7.03 build 81803 F-Secure Internet Gatekeeper for Linux prior to 3.02 build 1221 F-Secure Anti-Virus Linux Client and Server Security 5.54 and prior Solution: Apply the update from the referenced advisory. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2009-1782 BugTraq ID: 34849 http://www.securityfocus.com/bid/34849 http://www.securitytracker.com/id?1022170 http://www.securitytracker.com/id?1022171 http://www.securitytracker.com/id?1022172 http://secunia.com/advisories/35008 http://www.vupen.com/english/advisories/2009/1262 XForce ISS Database: fsecure-rar-zip-security-bypass(50346) https://exchange.xforce.ibmcloud.com/vulnerabilities/50346 |
| Copyright | Copyright (C) 2009 Greenbone AG |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |