Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1782

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2009-1782
Last Modified 27 May 2009 12:00:00
Published 22 May 2009 04:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-1782

Summary

Multiple F-Secure anti-virus products, including Anti-Virus for Microsoft Exchange 7.10 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, Windows 6.61 and earlier, and Linux 2.16 and earlier; Internet Security 2009 and earlier, Anti-Virus 2009 and earlier, Client Security 8.0 and earlier, and others; allow remote attackers to bypass malware detection via a crafted (1) ZIP and (2) RAR archive.

Vulnerable Systems

Application

  • F-secure Anti-virus 2009

  • F-secure Anti-virus 4.65

  • F-secure Anti-virus 5.54

  • F-secure Anti-virus 5.61

  • F-secure Anti-virus 6.62

  • F-secure Anti-virus 7.0

  • F-secure Anti-virus 7.00

  • F-secure Anti-virus 7.10

  • F-secure Anti-virus 8.0

  • F-secure Anti-virus 8.00

  • F-secure Client Security 8.0

  • F-secure Home Server Security 2009

  • F-secure Internet Gatekeeper 2.16

  • F-secure Internet Gatekeeper 3.01

  • F-secure Internet Gatekeeper 6.61

  • F-secure Internet Security 2009

  • F-secure Linux Security 7.01

  • F-secure Linux Security 7.02


References

CONFIRM - http://www.f-secure.com/en_EMEA/support/security-advisory/fsc-2009-1.html

XF - fsecure-rar-zip-security-bypass(50346)

VUPEN - ADV-2009-1262

SECTRACK - 1022172

SECTRACK - 1022171

SECTRACK - 1022170

BID - 34849

SECUNIA - 35008


Last Updated: 27 May 2016 10:50:40