Vulnerability Description
Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070619 allow remote attackers to bypass scanning via a crafted header in a (1) LHA or (2) RAR archive.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| F-Secure | F-Secure Anti-Virus | 2.16 |
| F-Secure | F-Secure Anti-Virus Linux Client Security | <= 5.52 |
| F-Secure | F-Secure Anti-Virus Linux Server Security | <= 5.52 |
| F-Secure | F-Secure Internet Security | 2005 |
| F-Secure | Internet Gatekeeper | <= 6.61 |
| F-Secure | Solutions Based On F-Secure Personal Express | 6.20 |
References
- http://osvdb.org/36728
- http://osvdb.org/36729
- http://secunia.com/advisories/25738Vendor Advisory
- http://www.f-secure.com/security/fsc-2007-5.shtml
- http://www.securityfocus.com/bid/24525
- http://www.securitytracker.com/id?1018266
- http://www.securitytracker.com/id?1018267
- http://www.securitytracker.com/id?1018268
- http://www.vupen.com/english/advisories/2007/2247
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34942
- http://osvdb.org/36728
- http://osvdb.org/36729
- http://secunia.com/advisories/25738Vendor Advisory
- http://www.f-secure.com/security/fsc-2007-5.shtml
- http://www.securityfocus.com/bid/24525
FAQ
What is CVE-2007-3300?
CVE-2007-3300 is a vulnerability with a CVSS score of 9.3 (HIGH). Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070619 allow remote attackers to bypass scanning via a crafted header in a (1) LHA or (2) RAR archive.
How severe is CVE-2007-3300?
CVE-2007-3300 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3300?
Check the references section above for vendor advisories and patch information. Affected products include: F-Secure F-Secure Anti-Virus, F-Secure F-Secure Anti-Virus Linux Client Security, F-Secure F-Secure Anti-Virus Linux Server Security, F-Secure F-Secure Internet Security, F-Secure Internet Gatekeeper.