Vulnerability Description
Multiple F-Secure anti-virus products, including Anti-Virus for Microsoft Exchange 7.10 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, Windows 6.61 and earlier, and Linux 2.16 and earlier; Internet Security 2009 and earlier, Anti-Virus 2009 and earlier, Client Security 8.0 and earlier, and others; allow remote attackers to bypass malware detection via a crafted (1) ZIP and (2) RAR archive.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| F-Secure | Anti-Virus | <= 4.65 |
| F-Secure | Client Security | <= 8.0 |
| F-Secure | Home Server Security | <= 2009 |
| F-Secure | Internet Gatekeeper | <= 2.16 |
| F-Secure | Internet Security | <= 2009 |
| F-Secure | Linux Security | <= 7.01 |
References
- http://secunia.com/advisories/35008Vendor Advisory
- http://www.f-secure.com/en_EMEA/support/security-advisory/fsc-2009-1.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/34849
- http://www.securitytracker.com/id?1022170
- http://www.securitytracker.com/id?1022171
- http://www.securitytracker.com/id?1022172
- http://www.vupen.com/english/advisories/2009/1262Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50346
- http://secunia.com/advisories/35008Vendor Advisory
- http://www.f-secure.com/en_EMEA/support/security-advisory/fsc-2009-1.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/34849
- http://www.securitytracker.com/id?1022170
- http://www.securitytracker.com/id?1022171
- http://www.securitytracker.com/id?1022172
- http://www.vupen.com/english/advisories/2009/1262Vendor Advisory
FAQ
What is CVE-2009-1782?
CVE-2009-1782 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Multiple F-Secure anti-virus products, including Anti-Virus for Microsoft Exchange 7.10 and earlier; Internet Gatekeeper for Windows 6.61 and earlier, Windows 6.61 and earlier, and Linux 2.16 and earl...
How severe is CVE-2009-1782?
CVE-2009-1782 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-1782?
Check the references section above for vendor advisories and patch information. Affected products include: F-Secure Anti-Virus, F-Secure Client Security, F-Secure Home Server Security, F-Secure Internet Gatekeeper, F-Secure Internet Security.