Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5143

Overview

Vulnerability Score 1.9 1.9
CVE Id CVE-2007-5143
Last Modified 07 Mar 2011 10:00:09
Published 01 Oct 2007 01:17:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5143

Summary

F-Secure Anti-Virus for Windows Servers 7.0 64-bit edition allows local users to bypass virus scanning by using the system32 directory to store a crafted (1) archive or (2) packed executable. NOTE: in many environments, this does not cross privilege boundaries because any process able to write to system32 could also shut off F-Secure Anti-Virus.

Vulnerable Systems

Application

  • F-secure Anti-virus 7.00


References

CONFIRM - http://www.f-secure.com/security/fsc-2007-6.shtml

SECUNIA - 26948

VUPEN - ADV-2007-3277

OSVDB - 41377

XF - fsecure-executables-security-bypass(36833)

SECTRACK - 1018745

BID - 25824


Last Updated: 27 May 2016 10:46:05