Secunia
Login
|
|
CVE Reference: CVE-2009-1348 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2009-1348 |
|
|
Description: The AV engine before DAT 5600 in McAfee VirusScan, Total Protection, Internet Security, SecurityShield for Microsoft ISA Server, Security for Microsoft Sharepoint, Security for Email Servers, Email Gateway, and Active Virus Defense allows remote attackers to bypass virus detection via (1) an invalid Headflags field in a malformed RAR archive, (2) an invalid Packsize field in a malformed RAR archive, or (3) an invalid Filelength field in a malformed ZIP archive. |
|
|
CVE Status: Candidate |
|
|
References: SAID Secunia Advisory: SA34949 MISC http://blog.zoller.lu/2009/04/mcafee-multiple-bypassesevasions-ziprar.html CONFIRM BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/503173/100/0/threaded BID 34780 |
|
| Return to the previous page. |
