CVE-2004-2220Anti-virus vulnerability

3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.7%
top 28.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
F-secure Anti-virus
Timeline
PublishedDec 31
Latest updateMay 3

Description

F-Secure Anti-Virus for Microsoft Exchange 6.30 and 6.31 does not properly detect certain password-protected files in a ZIP file, which allows remote attackers to bypass anti-virus protection.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDf-secure/f-secure_anti-virus6.30, 6.30_sr1, 6.31+2

Patches

Patch: ftp.f-secure.comPatch: secunia.comPatch: securitytracker.com

🔴Vulnerability Details

2
GHSA
GHSA-4chv-2998-h8pg: F-Secure Anti-Virus for Microsoft Exchange 62022-05-03
CVEList
CVE-2004-2220: F-Secure Anti-Virus for Microsoft Exchange 62005-07-17
CVE-2004-2220 — F-secure Anti-virus vulnerability | cvebase