CVE-2009-1782

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2009-1782
Multiple F-Secure anti-virus products, including Anti-Virus for Microsoft Exchange 7.10 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, Windows 6.61 and earlier, and Linux 2.16 and earlier; Internet Security 2009 and earlier, Anti-Virus 2009 and earlier, Client Security 8.0 and earlier, and others; allow remote attackers to bypass malware detection via a crafted (1) ZIP and (2) RAR archive.

6.8 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://secunia.com/advisories/35008 Vendor Advisory
http://www.f-secure.com/en_EMEA/support/security-advisory/fsc-2009-1.html Patch Vendor Advisory
http://www.securityfocus.com/bid/34849
http://www.securitytracker.com/id?1022170
http://www.securitytracker.com/id?1022171
http://www.securitytracker.com/id?1022172
http://www.vupen.com/english/advisories/2009/1262 Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/50346
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:f-secure:anti-virus:*:-:linux_servers:*:*:*:*:*
cpe:2.3:a:f-secure:anti-virus:*:-:inux_client_security:*:*:*:*:*
cpe:2.3:a:f-secure:anti-virus:*:-:linux_server_security:*:*:*:*:*
cpe:2.3:a:f-secure:anti-virus:*:-:mime_sweeper:*:*:*:*:*
cpe:2.3:a:f-secure:anti-virus:*:-:microsoft_exchange:*:*:*:*:*
cpe:2.3:a:f-secure:anti-virus:*:-:citrix_servers:*:*:*:*:*
cpe:2.3:a:f-secure:anti-virus:*:-:microsoft_exchange:*:*:*:*:*
cpe:2.3:a:f-secure:anti-virus:*:-:microsoft_exchange:*:*:*:*:*
cpe:2.3:a:f-secure:anti-virus:*:-:windows_server:*:*:*:*:*
cpe:2.3:a:f-secure:anti-virus:*:-:workstations:*:*:*:*:*
cpe:2.3:a:f-secure:anti-virus:*:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:client_security:*:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:home_server_security:*:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:internet_gatekeeper:*:-:linux:*:*:*:*:*
cpe:2.3:a:f-secure:internet_gatekeeper:*:-:linux_japanese:*:*:*:*:*
cpe:2.3:a:f-secure:internet_gatekeeper:*:-:windows:*:*:*:*:*
cpe:2.3:a:f-secure:internet_security:*:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:linux_security:*:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:linux_security:*:*:*:*:*:*:*:*
History

No history.

Information

Published : 2009-05-22 20:30

Updated : 2023-12-10 10:51

NVD link : CVE-2009-1782

Mitre link : CVE-2009-1782

CVE.ORG link : CVE-2009-1782

JSON object : View

Products Affected

f-secure

  • internet_security
  • client_security
  • linux_security
  • anti-virus
  • home_server_security
  • internet_gatekeeper
CWE
NVD-CWE-noinfo