Vulnerabilities > CVE-2006-3490 - Products Scan Evasion vulnerability in F-Secure products

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

f-secure

NVD

Published: 2006-07-10

Updated: 2017-07-20

Summary

F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier does not scan files contained on removable media when "Scan network drives" is disabled, which allows remote attackers to bypass anti-virus controls.

Vulnerable Configurations

Part	Description	Count
Application	F-Secure F Secure F Secure Anti Virus 5.5 F Secure F Secure Anti Virus * F Secure F Secure Anti Virus 5.51 F Secure F Secure Anti Virus 5.52 F Secure F Secure Anti Virus 2003 F Secure F Secure Anti Virus 2004 F Secure F Secure Anti Virus 2005 F Secure F Secure Anti Virus 2006 F Secure F Secure Internet Security 2003 F Secure F Secure Internet Security 2004 F Secure F Secure Internet Security 2005 F Secure F Secure Internet Security 2006 F Secure F Secure Service Platform FOR Service Providers *	16

Summary

Vulnerable Configurations

References