F-Secure Anti-Virus vulnerabilities
34 known vulnerabilities affecting f-secure/f-secure_anti-virus.
Total CVEs
34
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL4HIGH10MEDIUM19LOW1
Vulnerabilities
Page 2 of 2
CVE-2004-1762P4HIGHCVSS 7.5v4.50_hotfix_1v4.50_hotfix_2+1 more2004-12-31
CVE-2004-1762 [HIGH] CVE-2004-1762: Unknown vulnerability in F-Secure Anti-Virus (FSAV) 4.52 for Linux before Hotfix 3 allows the Sober.
Unknown vulnerability in F-Secure Anti-Virus (FSAV) 4.52 for Linux before Hotfix 3 allows the Sober.D worm to bypass FASV.
nvd
CVE-2007-2965P4HIGHCVSS 7.2≤ 4.65≤ 5.42+7 more2007-05-31
CVE-2007-2965 [HIGH] CVE-2007-2965: Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, includi
Unspecified vulnerability in the Real-time Scanning component in multiple F-Secure products, including Internet Security 2005, 2006 and 2007; Anti-Virus 2005, 2006 and 2007; and Solutions based on F-Secure Protection Service for Consumers 6.40 and earlier allows local users to gain privileges via a crafted I/O request packet (IRP), related to IOCTL (Input/Outpu
nvd
CVE-2008-0792P4MEDIUMCVSS 5.8v2006v2007+1 more2008-02-15
CVE-2008-0792 [MEDIUM] CWE-264 CVE-2008-0792: Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 200
Multiple F-Secure anti-virus products, including Internet Security 2006 through 2008, Anti-Virus 2006 through 2008, F-Secure Protection Service, and others, allow remote attackers to bypass malware detection via a crafted CAB archive.
nvd
CVE-2006-0338P4MEDIUMCVSS 5.0v4.51v4.52+23 more2006-01-21
CVE-2006-0338 [MEDIUM] CVE-2006-0338: Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for W
Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allow remote attackers to hide arbitrary files and data via malformed (1) RAR and (2) ZIP archives, which are not properly scanned.
nvd
CVE-2010-1425P4MEDIUMCVSS 5.0≤ 2010v2.16+49 more2010-04-15
CVE-2010-1425 [MEDIUM] CVE-2010-1425: F-Secure Internet Security 2010 and earlier; Anti-Virus for Microsoft Exchange 9 and earlier, and fo
F-Secure Internet Security 2010 and earlier; Anti-Virus for Microsoft Exchange 9 and earlier, and for MIMEsweeper 5.61 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, and for Linux 4.02 and earlier; Anti-Virus 2010 and earlier; Home Server Security 2009; Protection Service for Consumers 9 and earlier, for Business - Workstation security 9 and e
nvd
CVE-2004-0235P4MEDIUMCVSS 6.4v4.51v4.52+8 more2004-08-18
CVE-2004-0235 [MEDIUM] CVE-2004-0235: Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to cr
Multiple directory traversal vulnerabilities in LHA 1.14 allow remote attackers or local users to create arbitrary files via an LHA archive containing filenames with (1) .. sequences or (2) absolute pathnames with double leading slashes ("//absolute/path").
nvd
CVE-2005-3468P4MEDIUMCVSS 5.0v6.402005-11-02
CVE-2005-3468 [MEDIUM] CVE-2005-3468: Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 6.40 and Internet Ga
Directory traversal vulnerability in F-Secure Anti-Virus for Microsoft Exchange 6.40 and Internet Gatekeeper 6.40 to 6.42 allows limited remote attackers to bypass Web Console authentication and read files.
nvd
CVE-2006-3489P4MEDIUMCVSS 5.0≤ 5.44≤ 5.52+9 more2006-07-10
CVE-2006-3489 [MEDIUM] CVE-2006-3489: F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and S
F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier allows remote attackers to bypass anti-virus scanning via a crafted filename.
nvd
CVE-2006-3490P4MEDIUMCVSS 5.0≤ 5.44≤ 5.52+9 more2006-07-10
CVE-2006-3490 [MEDIUM] CVE-2006-3490: F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and S
F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier does not scan files contained on removable media when "Scan network drives" is disabled, which allows remote attackers to bypass anti-virus controls.
nvd
CVE-2004-2220P4MEDIUMCVSS 5.0v6.30v6.30_sr1+1 more2004-12-31
CVE-2004-2220 [MEDIUM] CVE-2004-2220: F-Secure Anti-Virus for Microsoft Exchange 6.30 and 6.31 does not properly detect certain password-p
F-Secure Anti-Virus for Microsoft Exchange 6.30 and 6.31 does not properly detect certain password-protected files in a ZIP file, which allows remote attackers to bypass anti-virus protection.
nvd
CVE-2007-1557P4HIGHCVSS 7.2v6.022007-03-21
CVE-2007-1557 [HIGH] CVE-2007-1557: Format string vulnerability in F-Secure Anti-Virus Client Security 6.02 allows local users to cause
Format string vulnerability in F-Secure Anti-Virus Client Security 6.02 allows local users to cause a denial of service and possibly gain privileges via format string specifiers in the Management Server name field on the Communication settings page.
nvd
CVE-2004-2405P4MEDIUMCVSS 6.4≤ 4.52≤ 5.42+4 more2004-12-31
CVE-2004-2405 [MEDIUM] CVE-2004-2405: Buffer overflow in multiple F-Secure Anti-Virus products, including F-Secure Anti-Virus 5.42 and ear
Buffer overflow in multiple F-Secure Anti-Virus products, including F-Secure Anti-Virus 5.42 and earlier, allows remote attackers to bypass scanning or cause a denial of service (crash or module restart), depending on the product, via a malformed LHA archive.
nvd
CVE-2004-0830P4MEDIUMCVSS 5.0v6.01v6.2+1 more2004-09-09
CVE-2004-0830 [MEDIUM] CVE-2004-0830: The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure
The Content Scanner Server in F-Secure Anti-Virus for Microsoft Exchange 6.21 and earlier, F-Secure Anti-Virus for Microsoft Exchange 6.01 and earlier, and F-Secure Internet Gatekeeper 6.32 and earlier allow remote attackers to cause a denial of service (service crash due to unhandled exception) via a certain malformed packet.
nvd
CVE-2007-5143P4LOWCVSS 1.9v7.002007-10-01
CVE-2007-5143 [LOW] CVE-2007-5143: F-Secure Anti-Virus for Windows Servers 7.0 64-bit edition allows local users to bypass virus scanni
F-Secure Anti-Virus for Windows Servers 7.0 64-bit edition allows local users to bypass virus scanning by using the system32 directory to store a crafted (1) archive or (2) packed executable. NOTE: in many environments, this does not cross privilege boundaries because any process able to write to system32 could also shut off F-Secure Anti-Virus.
nvd
← Previous2 / 2