Searching virus software vulnerabilities

MAILsweeper for SMTP 4.3 allows remote attacker

MAILsweeper | protection | attachment | malformed | attackers | exploited | variants | certain | message | MIMAIL | remote | bypass | allows | virus | mail | SMTP | via | zip |

MAILsweeper for SMTP 4.3 allows remote attackers to bypass virus protection via a mail message with a malformed zip attachment, as exploited by certain MIMAIL virus variants.


The Content Scanner Server in F-Secure Anti-Vir

Anti-Virus | Microsoft | Exchange | F-Secure | Content | Scanner | Server |

The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure Anti-Virus for Microsoft Exchange 6.01 and earlier, and F-Secure Internet Gatekeeper 6.32 and earlier allow remote attackers to cause a denial of service (service crash due to unhandled exception) via a certain malformed packet.


Sophos Anti-Virus before 3.87.0, and Sophos Ant

Anti-Virus | before | Sophos |

Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.


Trend ScanMail allows remote attackers to obtai

information | potentially | anti-virus | capability | smencynsf | sensitive | attackers | ScanMail | disable | allows | obtain | remote | Trend | file | via |

Trend ScanMail allows remote attackers to obtain potentially sensitive information or disable the anti-virus capability via the smency.nsf file.


MIMEDefang in MIME-tools 5.414 allows remote at

MIME-tools | MIMEDefang |

MIMEDefang in MIME-tools 5.414 allows remote attackers to bypass virus scanning capabilities via an e-mail attachment with a virus that contains an empty boundary string in the Content-Type header.


Sophos Anti-Virus 3.78 allows remote attackers

Anti-Virus | Sophos |

Sophos Anti-Virus 3.78 allows remote attackers to bypass virus scanning by using a qmail generated Delivery Status Notification (DSN) where the original email is not included in the bounce message.


F-Secure Anti-Virus for Microsoft Exchange 6.30

Anti-Virus | Microsoft | Exchange | F-Secure |

F-Secure Anti-Virus for Microsoft Exchange 6.30 and 6.31 does not properly detect certain password-protected files in a ZIP file, which allows remote attackers to bypass anti-virus protection.


Buffer overflow in multiple F-Secure Anti-Virus

Anti-Virus | including | products | F-Secure | overflow | multiple | Buffer |

Buffer overflow in multiple F-Secure Anti-Virus products, including F-Secure Anti-Virus 5.42 and earlier, allows remote attackers to bypass scanning or cause a denial of service (crash or module restart), depending on the product, via a malformed LHA archive.


Sophos Anti-Virus 3.93 does not check downloade

Anti-Virus | Sophos |

Sophos Anti-Virus 3.93 does not check downloaded files for viruses when they have only been written, which creates a race condition and may allow remote attackers to bypass virus protection if the file is executed before the antivirus starts on system reboot.


Multiple interpretation error in unspecified ve

interpretation | unspecified | executable | detection | malformed | attackers | specially | malicious | BitZipper | Antivirus | corrupted | versions | Multiple | rejected | PowerZip | products | headers | central | crafted | Control | Norman | allows | Winrar | opened | bypass | Winzip | though | remote | error | Virus | which | local | still | file | they | such | even | via | RAR | can |

Multiple interpretation error in unspecified versions of Norman Virus Control Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper.


Heap-based buffer overflow in Kaspersky Anti-Vi

Anti-Virus | Heap-based | Kaspersky | Personal | overflow | Engine | buffer | used |

Heap-based buffer overflow in Kaspersky Anti-Virus Engine, as used in Kaspersky Personal 5.0.227, Anti-Virus On-Demand Scanner for Linux 5.0.5, and F-Secure Anti-Virus for Linux 4.50 allows remote attackers to execute arbitrary code via a crafted CHM file.


Buffer overflow in multiple F-Secure Anti-Virus

Anti-Virus | including | products | versions | overflow | multiple | F-Secure | Servers | Windows | Buffer | Linux |

Buffer overflow in multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allows remote attackers to execute arbitrary code via crafted ZIP archives.


Multiple Sophos Anti-Virus products, including

Anti-Virus | including | products | Multiple | Windows | before | Sophos |

Multiple Sophos Anti-Virus products, including Anti-Virus for Windows 5.x before 5.2.1 and 4.x before 4.05, when cabinet file inspection is enabled, allows remote attackers to execute arbitrary code via a CAB file with "invalid folder count values," which leads to heap corruption.


F-Secure Anti-Virus 2003 through 2006 and other

Anti-Virus | F-Secure |

F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier allows remote attackers to bypass anti-virus scanning via a crafted filename.


F-Secure Anti-Virus 2003 through 2006 and other

Anti-Virus | F-Secure |

F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier does not scan files contained on removable media when "Scan network drives" is disabled, which allows remote attackers to bypass anti-virus controls.


The NDIS-TDI Hooking Engine, as used in the (1)

NDIS-TDI | Hooking | Engine | used |

The NDIS-TDI Hooking Engine, as used in the (1) KLICK (KLICK.SYS) and (2) KLIN (KLIN.SYS) device drivers 2.0.0.281 for in Kaspersky Labs Anti-Virus 6.0.0.303 and other Anti-Virus and Internet Security products, allows local users to execute arbitrary code via crafted Irp structure with invalid addresses in the 0x80052110 IOCTL.


Kaspersky Anti-Virus for Linux Mail Servers 5.5

Anti-Virus | Kaspersky | Servers | Linux | Mail |

Kaspersky Anti-Virus for Linux Mail Servers 5.5.10 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file.


F-Secure Anti-Virus for Linux Gateways 4.65 all

Anti-Virus | Gateways | F-Secure | Linux |

F-Secure Anti-Virus for Linux Gateways 4.65 allows remote attackers to cause a denial of service (possibly fatal scan error), and possibly bypass virus detection, by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file.


Heap-based buffer overflow in the arj.ppl modul

Workstations | Maintenance | Anti-Virus | Heap-based | Kaspersky | overflow | Security | Internet | OnDemand | Servers | Scanner | before | module | arjppl | buffer | build | Pack | File |

Heap-based buffer overflow in the arj.ppl module in the OnDemand Scanner in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to execute arbitrary code via crafted ARJ archives.


Unspecified vulnerability in KLIF (klif.sys) in

vulnerability | Unspecified | KLIF |

Unspecified vulnerability in KLIF (klif.sys) in Kaspersky Anti-Virus, Anti-Virus for Workstations, and Anti-Virus for File Servers 6.0, and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows local users to gain Ring-0 privileges via unspecified vectors.


Software vulnerabilities results 1 to 20 of 165     
Page: 12345...9