CVE-2006-6408

Description

Kaspersky Anti-Virus for Linux Mail Servers 5.5.10 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file.

Affected products

• Kaspersky Lab / kaspersky_anti-virus5.5.10 – 5.5.10

References

• MISChttp://www.securityfocus.com/bid/21461
• MISChttp://www.securityfocus.com/archive/1/453654/100/0/threaded
• MISChttp://www.quantenblog.net/security/virus-scanner-bypass