F-Secure Anti-Virus for Windows Servers Malware Detection Bypass Vulnerability
BID:25824
Info
F-Secure Anti-Virus for Windows Servers Malware Detection Bypass Vulnerability
| Bugtraq ID: | 25824 |
| Class: | Unknown |
| CVE: |
CVE-2007-5143 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 27 2007 12:00AM |
| Updated: | May 07 2015 05:35PM |
| Credit: | Mr Papadorotheoun is credited with discovering this issue. |
| Vulnerable: |
F-Secure Anti-Virus for Windows Servers 7.00 |
| Not Vulnerable: | |
Discussion
F-Secure Anti-Virus for Windows Servers Malware Detection Bypass Vulnerability
F-Secure Anti-Virus for Windows Servers is prone to a vulnerability that may allow certain malware to bypass detection.
An attacker may exploit this issue by placing maliciously crafted archives or packed executables in specific locations on a victim's computer.
Successful exploits will allow attackers to place on the computer malicious code that the antivirus application will fail to detect. If this code is subsequently run, this may result in a malware infection.
F-Secure Anti-Virus for Windows Servers 7.0 is affected by this issue.
F-Secure Anti-Virus for Windows Servers is prone to a vulnerability that may allow certain malware to bypass detection.
An attacker may exploit this issue by placing maliciously crafted archives or packed executables in specific locations on a victim's computer.
Successful exploits will allow attackers to place on the computer malicious code that the antivirus application will fail to detect. If this code is subsequently run, this may result in a malware infection.
F-Secure Anti-Virus for Windows Servers 7.0 is affected by this issue.
Exploit / POC
F-Secure Anti-Virus for Windows Servers Malware Detection Bypass Vulnerability
An attacker may exploit this issue by distributing maliciously crafted archives or packed executables.
An attacker may exploit this issue by distributing maliciously crafted archives or packed executables.
Solution / Fix
F-Secure Anti-Virus for Windows Servers Malware Detection Bypass Vulnerability
Solution:
The vendor released an advisory and fixes to address this issue. Please see the references for more information.
F-Secure Anti-Virus for Windows Servers 7.00
Solution:
The vendor released an advisory and fixes to address this issue. Please see the references for more information.
F-Secure Anti-Virus for Windows Servers 7.00
-
F-Secure fsav720-01-signed.fsfix
ftp://ftp.f-secure.com/support/hotfix/fsav/fsav720-01-signed.fsfix
References
F-Secure Anti-Virus for Windows Servers Malware Detection Bypass Vulnerability
References:
References:
- F-Secure Homepage (F-Secure)
- F-Secure Security Bulletin FSC-2007-6 (F-Secure)