F-Secure Anti-Virus for MIMEsweeper Sober.D Detection Bypass

2004-04-06T02:55:21
ID OSVDB:4962
Type osvdb
Reporter OSVDB
Modified 2004-04-06T02:55:21

Description

Vulnerability Description

F-Secure for MIMEsweeper contains a flaw that may allow a malicious worm to avoid detection. The issue is triggered when a Sober.D worm propagates itself in a zip file. It is possible that the flaw may allow malicious code to pass resulting in a loss of confidentiality, integrity, and/or availability.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, F-Secure has released a patch to address this vulnerability.

Short Description

F-Secure for MIMEsweeper contains a flaw that may allow a malicious worm to avoid detection. The issue is triggered when a Sober.D worm propagates itself in a zip file. It is possible that the flaw may allow malicious code to pass resulting in a loss of confidentiality, integrity, and/or availability.

References:

Vendor URL: http://www.f-secure.com/products/anti-virus/ Security Tracker: 1009685 Secunia Advisory ID:11297 ISS X-Force ID: 15744