Lucene search

[email protected]CVE-2005-3231

HistoryOct 14, 2005 - 10:02 a.m.

CVE-2005-3231

2005-10-1410:02:00

[email protected]

web.nvd.nist.gov

cve-2005-3231

interpretation error

cat quick heal

virus detection bypass

rar file

winrar

powerzip

winzip

bitzipper

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.5%

JSON

Multiple interpretation error in unspecified versions of CAT Quick Heal allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper.

Affected configurations

NVD

Node

catquick_heal

CPENameOperatorVersion
cat:quick_healcat quick healeq*

CPE	Name	Operator	Version
cat:quick_heal	cat quick heal	eq	*

References

marc.info/?l=bugtraq&m=112879611919750&w=2

shadock.net/secubox/AVCraftedArchive.html

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.5%

JSON

Related for CVE-2005-3231

cvelist1 nvd1