Vulnerabilities > CVE-2007-3300 - Anti-Virus Products LHA and RAR Archives Scan Bypass vulnerability in F-Secure
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070619 allow remote attackers to bypass scanning via a crafted header in a (1) LHA or (2) RAR archive.
Vulnerable Configurations
References
- http://osvdb.org/36728
- http://osvdb.org/36729
- http://secunia.com/advisories/25738
- http://www.f-secure.com/security/fsc-2007-5.shtml
- http://www.securityfocus.com/bid/24525
- http://www.securitytracker.com/id?1018266
- http://www.securitytracker.com/id?1018267
- http://www.securitytracker.com/id?1018268
- http://www.vupen.com/english/advisories/2007/2247
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34942