Vulnerabilities > CVE-2009-1782 - Unspecified vulnerability in F-Secure products
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple F-Secure anti-virus products, including Anti-Virus for Microsoft Exchange 7.10 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, Windows 6.61 and earlier, and Linux 2.16 and earlier; Internet Security 2009 and earlier, Anti-Virus 2009 and earlier, Client Security 8.0 and earlier, and others; allow remote attackers to bypass malware detection via a crafted (1) ZIP and (2) RAR archive.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 21 |
Nessus
NASL family | Windows |
NASL id | FSECURE_FSC_2009_01.NASL |
description | The remote host has an antivirus product from F-Secure installed. The installed version of the product fails to accurately scan certain ZIP and RAR archive files. Therefore, it may be possible for such files to evade detection from the scanning engine. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 38718 |
published | 2009-05-10 |
reporter | This script is Copyright (C) 2009-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/38718 |
title | F-Secure Products ZIP/RAR File Scan Evasion (FSC-2009-1) |
code |
|
References
- http://secunia.com/advisories/35008
- http://www.f-secure.com/en_EMEA/support/security-advisory/fsc-2009-1.html
- http://www.securityfocus.com/bid/34849
- http://www.securitytracker.com/id?1022170
- http://www.securitytracker.com/id?1022171
- http://www.securitytracker.com/id?1022172
- http://www.vupen.com/english/advisories/2009/1262
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50346