CVE-2007-3300

Description

Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070619 allow remote attackers to bypass scanning via a crafted header in a (1) LHA or (2) RAR archive.

Affected products

• F-Secure / f-secure_anti-virus2.16 – 2.16
• F-Secure / f-secure_anti-virus4.51 – 4.51
• F-Secure / f-secure_anti-virus4.51 – 4.51
• F-Secure / f-secure_anti-virus4.52 – 4.52
• F-Secure / f-secure_anti-virus4.52 – 4.52
• F-Secure / f-secure_anti-virus4.61 – 4.61
• F-Secure / f-secure_anti-virus4.61 – 4.61
• F-Secure / f-secure_anti-virus4.64 – 4.64
• F-Secure / f-secure_anti-virus4.64 – 4.64
• F-Secure / f-secure_anti-virus4.65 – 4.65
• F-Secure / f-secure_anti-virus4.65 – 4.65
• F-Secure / f-secure_anti-virus5.0.2 – 5.0.2
• F-Secure / f-secure_anti-virus5.2.1 – 5.2.1
• F-Secure / f-secure_anti-virus5.3.0 – 5.3.0
• F-Secure / f-secure_anti-virus5.5 – 5.5
• F-Secure / f-secure_anti-virus5.40 – 5.40
• F-Secure / f-secure_anti-virus5.41 – 5.41
• F-Secure / f-secure_anti-virus5.41 – 5.41
• F-Secure / f-secure_anti-virus5.42 – 5.42
• F-Secure / f-secure_anti-virus5.42 – 5.42
• F-Secure / f-secure_anti-virus5.43 – 5.43
• F-Secure / f-secure_anti-virus5.44 – 5.44
• F-Secure / f-secure_anti-virus5.52 – 5.52
• F-Secure / f-secure_anti-virus5.52 – 5.52
• F-Secure / f-secure_anti-virus5.54 – 5.54
• F-Secure / f-secure_anti-virus5.55 – 5.55
• F-Secure / f-secure_anti-virus5.56 – 5.56
• F-Secure / f-secure_anti-virus5.61 – 5.61
• F-Secure / f-secure_anti-virus6.01 – 6.01
• F-Secure / f-secure_anti-virus6.01 – 6.01
• F-Secure / f-secure_anti-virus6.02 – 6.02
• F-Secure / f-secure_anti-virus6.2 – 6.2
• F-Secure / f-secure_anti-virus6.03 – 6.03
• F-Secure / f-secure_anti-virus6.21 – 6.21
• F-Secure / f-secure_anti-virus6.30 – 6.30
• F-Secure / f-secure_anti-virus6.30_sr1 – 6.30_sr1
• F-Secure / f-secure_anti-virus6.31 – 6.31
• F-Secure / f-secure_anti-virus6.40 – 6.40
• F-Secure / f-secure_anti-virus6.60 – 6.60
• F-Secure / f-secure_anti-virus6.61 – 6.61
• F-Secure / f-secure_anti-virus7.00 – 7.00
• F-Secure / f-secure_anti-virus7.00 – 7.00
• F-Secure / f-secure_anti-virus7.00 – 7.00
• F-Secure / f-secure_anti-virus7.00 – 7.00
• F-Secure / f-secure_anti-virus2005 – 2005
• F-Secure / f-secure_anti-virus2006 – 2006
• F-Secure / f-secure_anti-virus2007 – 2007
• F-Secure / f-secure_anti-virus_linux_client_security5.52
• F-Secure / f-secure_anti-virus_linux_server_security5.52
• F-Secure / f-secure_internet_security2005 – 2005
• F-Secure / f-secure_internet_security2006 – 2006
• F-Secure / f-secure_internet_security2007 – 2007
• F-Secure / internet_gatekeeper6.61
• F-Secure / internet_gatekeeper2.06 – 2.06
• F-Secure / internet_gatekeeper2.14 – 2.14
• F-Secure / internet_gatekeeper2.15.484 – 2.15.484
• F-Secure / internet_gatekeeper2.16 – 2.16
• F-Secure / solutions_based_on_f-secure_personal_express6.20 – 6.20

References

• VENDOR_ADVISORYhttp://secunia.com/advisories/25738
• MISChttp://www.securityfocus.com/bid/24525
• MISChttp://www.securitytracker.com/id?1018267
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/34942
• MISChttp://www.f-secure.com/security/fsc-2007-5.shtml
• MISChttp://osvdb.org/36729
• MISChttp://www.securitytracker.com/id?1018266
• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/2247
• MISChttp://www.securitytracker.com/id?1018268
• MISChttp://osvdb.org/36728