anti virus software vulnerabilities
vulnerabilities.aspcode.net
Searching anti virus software vulnerabilities
The default configurations for McAfee Virus Sca
configurations
|
Anti-Virus
|
malicious
|
attackers
|
detection
|
checkers
|
RECYCLED
|
Recycle
|
without
|
Windows
|
default
|
utility
|
allows
|
Norton
|
McAfee
|
folder
|
Virus
|
store
|
which
|
files
|
check
|
code
|
Scan
|
used
|
Bin
|
not
|
The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection.
The Content Scanner Server in F-Secure Anti-Vir
Anti-Virus
|
Microsoft
|
Exchange
|
F-Secure
|
Content
|
Scanner
|
Server
|
The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure Anti-Virus for Microsoft Exchange 6.01 and earlier, and F-Secure Internet Gatekeeper 6.32 and earlier allow remote attackers to cause a denial of service (service crash due to unhandled exception) via a certain malformed packet.
Sophos Anti-Virus before 3.87.0, and Sophos Ant
Anti-Virus
|
before
|
Sophos
|
Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
Trend ScanMail allows remote attackers to obtai
information
|
potentially
|
anti-virus
|
capability
|
smencynsf
|
sensitive
|
attackers
|
ScanMail
|
disable
|
allows
|
obtain
|
remote
|
Trend
|
file
|
via
|
Trend ScanMail allows remote attackers to obtain potentially sensitive information or disable the anti-virus capability via the smency.nsf file.
Unknown vulnerability in F-Secure Anti-Virus (F
vulnerability
|
Anti-Virus
|
F-Secure
|
Unknown
|
Unknown vulnerability in F-Secure Anti-Virus (FSAV) 4.52 for Linux before Hotfix 3 allows the Sober.D worm to bypass FASV.
Sophos Anti-Virus 3.78 allows remote attackers
Anti-Virus
|
Sophos
|
Sophos Anti-Virus 3.78 allows remote attackers to cause a denial of service (infinite loop) via a MIME header that is not properly terminated.
Sophos Anti-Virus 3.78 allows remote attackers
Anti-Virus
|
Sophos
|
Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.
F-Secure Anti-Virus for Microsoft Exchange 6.30
Anti-Virus
|
Microsoft
|
Exchange
|
F-Secure
|
F-Secure Anti-Virus for Microsoft Exchange 6.30 and 6.31 does not properly detect certain password-protected files in a ZIP file, which allows remote attackers to bypass anti-virus protection.
Buffer overflow in multiple F-Secure Anti-Virus
Anti-Virus
|
including
|
products
|
F-Secure
|
overflow
|
multiple
|
Buffer
|
Buffer overflow in multiple F-Secure Anti-Virus products, including F-Secure Anti-Virus 5.42 and earlier, allows remote attackers to bypass scanning or cause a denial of service (crash or module restart), depending on the product, via a malformed LHA archive.
Buffer overflow in multiple F-Secure Anti-Virus
Anti-Virus
|
including
|
products
|
versions
|
overflow
|
multiple
|
F-Secure
|
Servers
|
Windows
|
Buffer
|
Linux
|
Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.
Multiple Sophos Anti-Virus products, including
Anti-Virus
|
including
|
products
|
Multiple
|
Windows
|
before
|
Sophos
|
Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values," which leads to heap corruption.
F-Secure Anti-Virus 2003 through 2006 and other
Anti-Virus
|
F-Secure
|
F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier allows remote attackers to bypass anti-virus scanning via a crafted filename.
F-Secure Anti-Virus 2003 through 2006 and other
Anti-Virus
|
F-Secure
|
F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier does not scan files contained on removable media when "Scan network drives" is disabled, which allows remote attackers to bypass anti-virus controls.
Sophos Anti-Virus 5.1 allows remote attackers t
Anti-Virus
|
attackers
|
service
|
denial
|
allows
|
Sophos
|
remote
|
cause
|
Sophos Anti-Virus 5.1 allows remote attackers to cause a denial of service (memory consumption) via a file that is compressed with Petite and contains a large number of sections.
The NDIS-TDI Hooking Engine, as used in the (1)
NDIS-TDI
|
Hooking
|
Engine
|
used
|
The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL.
Grisoft AVG Anti-Virus before 7.1.407 has unkno
Anti-Virus
|
Grisoft
|
before
|
AVG
|
Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote attack vectors involving an uninitialized variable and a crafted CAB file.
Kaspersky Anti-Virus for Linux Mail Servers 5.5
Anti-Virus
|
Kaspersky
|
Servers
|
Linux
|
Mail
|
Kaspersky Anti-Virus for Linux Mail Servers 5.5.10 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file.
The (1) VetMONNT.sys and (2) VetFDDNT.sys drive
The (1) VetMONNT.sys and (2) VetFDDNT.sys drivers in CA Anti-Virus 2007 8.1, Anti-Virus for Vista Beta 8.2, and CA Internet Security Suite 2007 v3.0 do not properly handle NULL buffers, which allows local users with administrative access to cause a denial of service (system crash) via certain IOCTLs.
Heap-based buffer overflow in the arj.ppl modul
Workstations
|
Maintenance
|
Anti-Virus
|
Heap-based
|
Kaspersky
|
overflow
|
Security
|
Internet
|
OnDemand
|
Servers
|
Scanner
|
before
|
module
|
arjppl
|
buffer
|
build
|
Pack
|
File
|
Heap-based buffer overflow in the arj.ppl module in the OnDemand Scanner in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to execute arbitrary code via crafted ARJ archives.
Unspecified vulnerability in KLIF (klif.sys) in
vulnerability
|
Unspecified
|
KLIF
|
Unspecified vulnerability in KLIF (klif.sys) in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows local users to gain Ring-0 privileges via unspecified vectors.
Software vulnerabilities results 1 to 20 of 179
Page:
1
2
3
4
5
...
9
►