CVE-2006-3489

3 documents3 sources

Severity

5.0MEDIUM

EPSS

1.3%

top 19.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F-secure F-secure Anti-virus F-secure F-secure Internet Security

Timeline

PublishedJul 10

Latest updateMay 1

Description

F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier allows remote attackers to bypass anti-virus scanning via a crafted filename.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDf-secure/f-secure_anti-virus5.44+10

▶NVDf-secure/f-secure_internet_security4 versions+3

Patches

Patch: www.f-secure.com ↗Patch: www.f-secure.com ↗

🔴Vulnerability Details

GHSA

GHSA-r342-23qv-wr86: F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6↗2022-05-01

▶

CVEList

CVE-2006-3489: F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6↗2006-07-10

▶