Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2004-0935

4 documents4 sources
Severity
7.5HIGH
EPSS
13.2%
top 5.86%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
23
Archive ZIP Archive ZIPBroadcom Brightstor Arcserve BackupBroadcom Etrust Antivirus+20 more
Timeline
PublishedJan 27
Latest updateApr 29

Description

Eset Anti-Virus before 1.020 (16th September 2004) allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages22 packages

NVDeset_software/nod32_antivirus1.0.11, 1.0.12, 1.0.13+2
NVDca/etrust_antivirus7.0_sp2
NVDrav_antivirus/rav_antivirus1.0, 8.4.2+1

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-j2fx-58w3-67xc: Eset Anti-Virus before 12022-04-29
CVEList
CVE-2004-0935: Eset Anti-Virus before 12004-11-19

💥Exploits & PoCs

1
Exploit-DB
Multiple AntiVirus - '.zip' Detection Bypass2004-11-14