F-Secure Anti-Virus PKZip Virus Detection Bypass

2004-05-25T00:00:00
ID OSVDB:6409
Type osvdb
Reporter OSVDB
Modified 2004-05-25T00:00:00

Description

Vulnerability Description

F-Seure AntiVirus contains a flaw that may allow a remote attacker to bypass antivirus policies. The problem is that the program fails to properly detect the Sober.D and Sober.G viruses, which could allow a remote attacker to place arbitrary files resulting in a loss of integrity. No further details have been provided.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, F-Secure has released a patch to address this vulnerability.

Short Description

F-Seure AntiVirus contains a flaw that may allow a remote attacker to bypass antivirus policies. The problem is that the program fails to properly detect the Sober.D and Sober.G viruses, which could allow a remote attacker to place arbitrary files resulting in a loss of integrity. No further details have been provided.

References:

Vendor URL: http://www.f-secure.com/ Vendor Specific Solution URL: ftp://ftp.f-secure.com/support/hotfix/fsav/fsavwk552-05-signed.fsfix Vendor Specific Solution URL: ftp://ftp.f-secure.com/support/hotfix/fsavcs/fsavwk552-05-signed.fsfix Vendor Specific Solution URL: ftp://ftp.f-secure.com/support/hotfix/fsav-server/fsavsr541-13-signed.fsfix Secunia Advisory ID:11699 ISS X-Force ID: 16243 CVE-2004-2276