Lucene search
HistoryJan 27, 2005 - 5:00 a.m.
CVE-2004-0934
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.4
Confidence
Low
EPSS
0.964
Percentile
99.6%
Kaspersky 3.x to 4.x allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
Affected configurations
Node
archive_ziparchive_zipMatch1.13
ORbroadcombrightstor_arcserve_backupMatch11.1
ORbroadcometrust_antivirusMatch7.0
ORbroadcometrust_antivirusMatch7.1
ORbroadcometrust_antivirus_gatewayMatch7.0
ORbroadcometrust_antivirus_gatewayMatch7.1
ORbroadcometrust_ez_antivirusMatch6.1
ORbroadcometrust_ez_antivirusMatch6.2
ORbroadcometrust_ez_antivirusMatch6.3
ORbroadcometrust_ez_armorMatch2.0
ORbroadcometrust_ez_armorMatch2.3
ORbroadcometrust_ez_armorMatch2.4
ORbroadcometrust_intrusion_detectionMatch1.4.1.13
ORbroadcometrust_intrusion_detectionMatch1.4.5
ORbroadcometrust_intrusion_detectionMatch1.5
ORbroadcometrust_secure_content_managerMatch1.0
ORbroadcometrust_secure_content_managerMatch1.1
ORbroadcominoculateitMatch6.0
ORcaetrust_antivirusMatch7.0_sp2
ORcaetrust_secure_content_managerMatch1.0sp1
OReset_softwarenod32_antivirusMatch1.0.11
OReset_softwarenod32_antivirusMatch1.0.12
OReset_softwarenod32_antivirusMatch1.0.13
ORkaspersky_labkaspersky_anti-virusMatch3.0
ORkaspersky_labkaspersky_anti-virusMatch4.0
ORkaspersky_labkaspersky_anti-virusMatch5.0
ORmcafeeantivirus_engineMatch4.3.20
ORrav_antivirusrav_antivirus_desktopMatch8.6
ORrav_antivirusrav_antivirus_for_file_serversMatch1.0
ORrav_antivirusrav_antivirus_for_mail_serversMatch8.4.2
ORsophossophos_anti-virusMatch3.4.6
ORsophossophos_anti-virusMatch3.78
ORsophossophos_anti-virusMatch3.78d
ORsophossophos_anti-virusMatch3.79
ORsophossophos_anti-virusMatch3.80
ORsophossophos_anti-virusMatch3.81
ORsophossophos_anti-virusMatch3.82
ORsophossophos_anti-virusMatch3.83
ORsophossophos_anti-virusMatch3.84
ORsophossophos_anti-virusMatch3.85
ORsophossophos_anti-virusMatch3.86
ORsophossophos_puremessage_anti-virusMatch4.6
ORsophossophos_small_business_suiteMatch1.0
Node
gentoolinux
ORgentoolinuxMatch1.4
ORmandrakesoftmandrake_linuxMatch10.1
ORmandrakesoftmandrake_linuxMatch10.1x86_64
ORsusesuse_linuxMatch9.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| archive_zip | archive_zip | 1.13 | cpe:2.3:a:archive_zip:archive_zip:1.13:*:*:*:*:*:*:* |
| broadcom | brightstor_arcserve_backup | 11.1 | cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:* |
| broadcom | etrust_antivirus | 7.0 | cpe:2.3:a:broadcom:etrust_antivirus:7.0:*:*:*:*:*:*:* |
| broadcom | etrust_antivirus | 7.1 | cpe:2.3:a:broadcom:etrust_antivirus:7.1:*:*:*:*:*:*:* |
| broadcom | etrust_antivirus_gateway | 7.0 | cpe:2.3:a:broadcom:etrust_antivirus_gateway:7.0:*:*:*:*:*:*:* |
| broadcom | etrust_antivirus_gateway | 7.1 | cpe:2.3:a:broadcom:etrust_antivirus_gateway:7.1:*:*:*:*:*:*:* |
| broadcom | etrust_ez_antivirus | 6.1 | cpe:2.3:a:broadcom:etrust_ez_antivirus:6.1:*:*:*:*:*:*:* |
| broadcom | etrust_ez_antivirus | 6.2 | cpe:2.3:a:broadcom:etrust_ez_antivirus:6.2:*:*:*:*:*:*:* |
| broadcom | etrust_ez_antivirus | 6.3 | cpe:2.3:a:broadcom:etrust_ez_antivirus:6.3:*:*:*:*:*:*:* |
| broadcom | etrust_ez_armor | 2.0 | cpe:2.3:a:broadcom:etrust_ez_armor:2.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2004-0934
2004-11-19 05:00:00
cve
cve
CVE-2004-0934
2005-01-27 05:00:00
exploitpack
exploitpack
Multiple AntiVirus - .zip Detection Bypass
2004-11-14 00:00:00
seebug
seebug
Multiple AntiVirus (zip file) Detection Bypass Exploit
2008-07-16 00:00:00
zdt
zdt
Multiple AntiVirus (zip file) Detection Bypass Exploit
2004-11-14 00:00:00
securityvulns
securityvulns
nessus
nessus
Mandrake Linux Security Advisory : perl-Archive-Zip (MDKSA-2004:118)
2004-11-02 00:00:00
exploitdb
exploitdb
Multiple AntiVirus - '.zip' Detection Bypass
2004-11-14 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.4
Confidence
Low
EPSS
0.964
Percentile
99.6%
Related for NVD:CVE-2004-0934