Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3490

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-3490
Last Modified 07 Mar 2011 09:38:44
Published 10 Jul 2006 06:05:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3490

Summary

F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier does not scan files contained on removable media when "Scan network drives" is disabled, which allows remote attackers to bypass anti-virus controls.

Vulnerable Systems

Application

  • F-secure Anti-virus 2003

  • F-secure Anti-virus 2004

  • F-secure Anti-virus 2005

  • F-secure Anti-virus 2006

  • F-secure Anti-virus 5.44

  • F-secure Anti-virus 5.5

  • F-secure Anti-virus 5.51

  • F-secure Anti-virus 5.52

  • F-secure Anti-virus 5.61

  • F-secure Anti-virus 6.01

  • F-secure Internet Security 2003

  • F-secure Internet Security 2004

  • F-secure Internet Security 2005

  • F-secure Internet Security 2006

  • F-secure Service Platform For Service Providers


References

CONFIRM - http://www.f-secure.com/security/fsc-2006-4.shtml

VUPEN - ADV-2006-2573

OSVDB - 26876

SECTRACK - 1016401

SECTRACK - 1016400

XF - fsecure-scannetworkdrives-security-bypass(27502)

BID - 18693

SECUNIA - 20858


Last Updated: 27 May 2016 10:43:02