Lucene search

[email protected]NVD:CVE-2006-0338

HistoryJan 21, 2006 - 12:03 a.m.

CVE-2006-0338

2006-01-2100:03:00

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

6.9 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.5%

JSON

Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allow remote attackers to hide arbitrary files and data via malformed (1) RAR and (2) ZIP archives, which are not properly scanned.

Affected configurations

NVD

Node

f-securef-secure_anti-virusMatch4.51linux_gateways

f-securef-secure_anti-virusMatch4.51linux_servers

f-securef-secure_anti-virusMatch4.52linux_gateways

f-securef-secure_anti-virusMatch4.52linux_servers

f-securef-secure_anti-virusMatch4.52linux_workstations

f-securef-secure_anti-virusMatch4.60samba_servers

f-securef-secure_anti-virusMatch4.61linux_gateways

f-securef-secure_anti-virusMatch4.61linux_servers

f-securef-secure_anti-virusMatch4.62samba_servers

f-securef-secure_anti-virusMatch4.64linux_gateways

f-securef-secure_anti-virusMatch4.64linux_servers

f-securef-secure_anti-virusMatch5.0linux_client_security

f-securef-secure_anti-virusMatch5.0linux_server_security

f-securef-secure_anti-virusMatch5.5client_security

f-securef-secure_anti-virusMatch5.5mimesweeper

f-securef-secure_anti-virusMatch5.5windows_servers

f-securef-secure_anti-virusMatch5.11linux_client_security

f-securef-secure_anti-virusMatch5.11linux_server_security

f-securef-secure_anti-virusMatch5.41mimesweeper

f-securef-secure_anti-virusMatch5.41workstations

f-securef-secure_anti-virusMatch5.42mimesweeper

f-securef-secure_anti-virusMatch5.42windows_servers

f-securef-secure_anti-virusMatch5.42workstations

f-securef-secure_anti-virusMatch5.43workstations

f-securef-secure_anti-virusMatch5.44workstations

f-securef-secure_anti-virusMatch5.52citrix_servers

f-securef-secure_anti-virusMatch5.52client_security

f-securef-secure_anti-virusMatch5.52mimesweeper

f-securef-secure_anti-virusMatch5.52windows_servers

f-securef-secure_anti-virusMatch5.55client_security

f-securef-secure_anti-virusMatch6.01client_security

f-securef-secure_anti-virusMatch6.01ms_exchange

f-securef-secure_anti-virusMatch6.2firewalls

f-securef-secure_anti-virusMatch6.2ms_exchange

f-securef-secure_anti-virusMatch6.21ms_exchange

f-securef-secure_anti-virusMatch6.30ms_exchange

f-securef-secure_anti-virusMatch6.30_sr1ms_exchange

f-securef-secure_anti-virusMatch6.31ms_exchange

f-securef-secure_anti-virusMatch6.40ms_exchange

f-securef-secure_anti-virusMatch2003

f-securef-secure_anti-virusMatch2004

f-securef-secure_anti-virusMatch2005

f-securef-secure_internet_securityMatch2004

f-securef-secure_internet_securityMatch2005

f-securef-secure_internet_securityMatch2006

f-securef-secure_personal_expressMatch4.5

f-securef-secure_personal_expressMatch4.6

f-securef-secure_personal_expressMatch4.7

f-securef-secure_personal_expressMatch5.0

f-secureinternet_gatekeeperMatch2.06linux

f-secureinternet_gatekeeperMatch2.14linux

f-secureinternet_gatekeeperMatch6.32

f-secureinternet_gatekeeperMatch6.41

f-secureinternet_gatekeeperMatch6.42

References

secunia.com/advisories/18529

securitytracker.com/id?1015507

securitytracker.com/id?1015508

securitytracker.com/id?1015509

securitytracker.com/id?1015510

www.ciac.org/ciac/bulletins/q-103.shtml

www.f-secure.com/security/fsc-2006-1.shtml

www.osvdb.org/22633

www.securityfocus.com/bid/16309

www.vupen.com/english/advisories/2006/0257

exchange.xforce.ibmcloud.com/vulnerabilities/24199

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

6.9 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.5%

JSON

Related for NVD:CVE-2006-0338

prion1 cvelist1 cve1 nessus1