CVE-2006-6407 — Antivirus vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

0.3%

top 44.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F-prot Antivirus

Timeline

PublishedDec 10

Latest updateMay 1

Description

F-Prot Antivirus for Linux x86 Mail Servers 4.6.6 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDf-prot/f-prot_antivirus4.6.6

🔴Vulnerability Details

GHSA

GHSA-3mq9-vrwc-6hf2: F-Prot Antivirus for Linux x86 Mail Servers 4↗2022-05-01

▶

CVEList

CVE-2006-6407: F-Prot Antivirus for Linux x86 Mail Servers 4↗2006-12-10

▶