Vulnerabilities > CVE-2007-5143 - Unspecified vulnerability in F-Secure Anti-Virus 7.00

047910
CVSS 1.9 - LOW
Attack vector
LOCAL
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
local
microsoft
f-secure
nessus

Summary

F-Secure Anti-Virus for Windows Servers 7.0 64-bit edition allows local users to bypass virus scanning by using the system32 directory to store a crafted (1) archive or (2) packed executable. NOTE: in many environments, this does not cross privilege boundaries because any process able to write to system32 could also shut off F-Secure Anti-Virus.

Vulnerable Configurations

Part Description Count
OS
Microsoft
1
Application
F-Secure
1

Nessus

NASL familyWindows
NASL idFSECURE_FSC2007_6.NASL
descriptionThe remote host is running F-Secure Anti-Virus for Windows Servers. According to its version, the installation of this software on the remote host may allow an attacker by bypass antivirus scanning by placing a specially crafted archive or packed executable into the
last seen2020-06-01
modified2020-06-02
plugin id26193
published2007-09-28
reporterThis script is Copyright (C) 2007-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/26193
titleF-Secure Anti-Virus for Windows system32 Directory Crafted File Detection Bypass