Main Menu
Network
Sponsor
Top 10 Sites
Partners
|
|
Top Submit newsSubscribe 
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
| Sponsored links | Want to become one of our authors and see your work published on ALLSeek.iNFO ?
| | Kaspersky Anti-Virus Lets Remote Users Bypass Virus Detection WIth Zero Compressed Size Header |
|---|
Categorie: Vulnerability
Posted: 2004-10-20 by ReCall
Views: 481
Source: Click here
| Current Rating: Not rated
|
| | Details |
|---|
Description: iDEFENSE reported that several anti-virus engines, including Kaspersky AntiVirus, do not properly detect viruses in ZIP archives that contain specially modified headers. A remote user may be able to create and send a malicious file to a target user.
Computer Associates, McAfee, Sophos, Eset, and RAV are also affected. The latest engines from Symantec, Bitdefender, Trend Micro, and Panda are not affected, the report said.
It is reported that a remote user can create a zip archive containing a virus and then set the uncompressed size field in both the local header and the global header to '0'.
The vendor was notified on September 16, 2004.
The original advisory is available at:
http://www.idefense.com/application/poi/display?id=153&type=vulnerabilities
Impact: A remote user can create a specially crafted zip file containing a virus that will evade detection by the scan feature.
Solution: No solution was available at the time of this entry. Kaspersky plans to issue a fix for the 3.x and 4.x engines in the next cumulative update and for the 5.0 engine in the next maintenance pack, planned for October 2004.
| | Syndication |
|---|
Permalink Email this
The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=1030
| | User comments (post your comments ) |
|---|
Only registerd members can post comments and articles
|
| Previous articleBack to news listNext article
|
|
|
|
InterJOB.su
|
