CVE-2006-6627

CVE-2006-6627 affects BitDefender products prior to 20060829, including Antivirus, Antivirus Plus, Internet Security, Mail Protection for Enterprises, and Online Scanner, plus BitDefender products for Microsoft ISA Server and Exchange 5.5–2003. The issue is an integer overflow in the packed PE fi...

CVE-2006-6627

Integer overflow in the packed PE file parsing implementation in BitDefender products before 20060829, including Antivirus, Antivirus Plus, Internet Security, Mail Protection for Enterprises, and Online Scanner; and BitDefender products for Microsoft ISA Server and Exchange 5.5 through 2003; allo...

BitDefender multiple software products buffer overflow

Heap buffer overflow on PE files parsing...

BitDefender AV Packed PE File Parsing Engine Heap Overflow

n.runs AG http://www.nruns.com/ security at nruns.com n.runs-SA-2006.003 15-Dec-2006 Vendor: BitDefender, http://www.bitdefender.com Affected Products: BitDefender Antivirus, BitDefender Antivirus Plus, BitDefender Internet Security, BitDefender Mail Protection for Enterprises, BitDefender Online...

CVE-2006-6405

BitDefender Mail Protection for SMB 2.0 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file...

CVE-2006-6405

BitDefender Mail Protection for SMB 2.0 is affected by a vulnerability where remote attackers can bypass virus detection by inserting invalid characters into base64-encoded content within a multipart/mixed MIME file, as demonstrated with the EICAR test file. The issue is described in CVE-2006-640...

CVE-2006-6405

BitDefender Mail Protection for SMB 2.0 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file...

Multiple Vendor Unusual MIME Encoding Content Filter Bypass

Several e-mail virus scanners can be tricked into passing an EICAR test file if the following conditions are met: 1. the EICAR file is encoded in Base64 including characters not in the standard alphabet e.g. whitespaces and 2. the part containing the EICAR file is nested within one or several...

CVE-2005-3211

Multiple interpretation error in unspecified versions of BitDefender Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip,...

CVE-2005-3211

CVE-2005-3211 affects BitDefender Antivirus and involves a multiple interpretation error in unspecified versions. A remote attacker can bypass virus detection by delivering a malicious executable in a specially crafted RAR file with malformed central and local headers. The crafted archive can be ...

CVE-2005-3211

Multiple interpretation error in unspecified versions of BitDefender Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip,...

CVE-2005-3154

Format string vulnerability in the logging functionality in BitDefender AntiVirus 7.2 through 9 allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in file or directory name...

CVE-2005-3154

CVE-2005-3154 is a format-string vulnerability in BitDefender Antivirus logging functionality (versions 7.2–9). The flaw arises when printing logging information for file/directory names, allowing a remote attacker to trigger a denial of service and potentially execute arbitrary code. Related adv...

CVE-2005-3154

Format string vulnerability in the logging functionality in BitDefender AntiVirus 7.2 through 9 allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in file or directory name...

Multiple antiviruses file scanning bypass and format string bug

It's possible to bypass file scanning by using special characters for example 01 in filename. Format string bug perenset while parsing filename in BitDefender...

CVE-2005-2298

BitDefender Engine 1.6.1 and earlier does not properly scan all attachments, which allows remote attackers to bypass virus scanning via begin and end commands in the body of the e-mail, which BitDefender treats as a uuencoded attachment and stops scanning afterwards...

CVE-2005-2298

BitDefender Engine 1.6.1 and earlier does not properly scan all attachments, which allows remote attackers to bypass virus scanning via begin and end commands in the body of the e-mail, which BitDefender treats as a uuencoded attachment and stops scanning afterwards...

CVE-2005-2298

CVE-2005-2298 affects BitDefender Engine versions 1.6.1 and earlier. The issue arises because the scanner does not properly process all email attachments: begin and end commands in the message body are treated as a uuencoded attachment, causing scanning to stop prematurely. This allows remote att...

bitRace.txt

----------------------------- Product: BitDefender Version: 8 Tested on: Windows 2000 SP4 Vulnerability: Race condition ----------------------------- BACKGROUND ---------- BitDefender ensures the most advanced antivirus protection, as well as data confidentiality, active content control and...

CVE-2004-1947

The CVE-2004-1947 entry concerns the AVXSCANONLINE.AvxScanOnlineCtrl.1 ActiveX control in BitDefender Scan Online. The vulnerability allows remote attackers to (1) obtain sensitive information such as system drives and contents or (2) use the RequestFile method to download and execute arbitrary c...