Vulnerability CVE-2009-1783
Published: 2009-05-22   Modified: 2012-02-13

Description:
Multiple FRISK Software F-Prot anti-virus products, including Antivirus for Exchange, Linux on IBM zSeries, Linux x86 File Servers, Linux x86 Mail Servers, Linux x86 Workstations, Solaris Mail Servers, Antivirus for Windows, and others, allow remote attackers to bypass malware detection via a crafted CAB archive.

See advisories in our WLB2 database:
Topic
Author
Date
High
Fprot CAB bypass / evasion
Thierry Zoller
26.05.2009

Type:

CWE-20

 (Improper Input Validation)

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
F-prot -> F-prot antivirus 
F-prot -> F-prot aves 
F-prot -> F-prot milter 

 References:
http://blog.zoller.lu/2009/04/advisory-f-prot-frisk-cab-bypass.html
http://www.securityfocus.com/archive/1/503393/100/0/threaded
http://www.securityfocus.com/bid/34896
https://exchange.xforce.ibmcloud.com/vulnerabilities/50427
Copyright 2024, cxsecurity.com

 

Back to Top