Vulnerabilities > CVE-2006-6960 - Unspecified vulnerability in Webroot Software SPY Sweeper
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The Compression Sweep feature in WebRoot Spy Sweeper 4.5.9 and earlier does not handle non-ZIP archives, which allows remote attackers to bypass the malware detection via files with (1) RAR, (2) GZ, (3) TAR, (4) CAB, or (5) ACE compression.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://www.osvdb.org/27536
- http://www.securityfocus.com/archive/1/437814/100/200/threaded
- http://www.sentinel.gr/advisories/SGA-0001.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27266
- http://www.osvdb.org/27536
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27266
- http://www.sentinel.gr/advisories/SGA-0001.txt
- http://www.securityfocus.com/archive/1/437814/100/200/threaded