CVE-2004-2442
published 2004-12-31CVE-2004-2442: Multiple interpretation error in various F-Secure Anti-Virus products, including Workstation 5.43 and earlier, Windows Servers 5.50 and earlier, MIMEsweeper…
PriorityP430medium5CVSS 2.0
AVNACLAuNCNIPAN
EXPLOIT
EPSS
10.64%
95.2th percentile
Multiple interpretation error in various F-Secure Anti-Virus products, including Workstation 5.43 and earlier, Windows Servers 5.50 and earlier, MIMEsweeper 5.50 and earlier, Anti-Virus for Linux Servers and Gateways 4.61 and earlier, and other products, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on the target system.
Affected
32 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_anti-virus | — | — |
| f-secure | f-secure_for_firewalls | — | — |
| f-secure | f-secure_internet_security | — | — |
| f-secure | f-secure_internet_security | — | — |
| f-secure | f-secure_personal_express | — | — |
| f-secure | f-secure_personal_express | — | — |
| f-secure | f-secure_personal_express | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/13263/http://www.ciac.org/ciac/bulletins/p-041.shtmlhttp://www.f-secure.com/security/fsc-2004-3.shtmlhttp://www.kb.cert.org/vuls/id/968818http://www.securityfocus.com/bid/11732https://exchange.xforce.ibmcloud.com/vulnerabilities/18217http://secunia.com/advisories/13263/http://www.ciac.org/ciac/bulletins/p-041.shtmlhttp://www.f-secure.com/security/fsc-2004-3.shtmlhttp://www.kb.cert.org/vuls/id/968818http://www.securityfocus.com/bid/11732https://exchange.xforce.ibmcloud.com/vulnerabilities/18217
2004-12-31
Published