Description
F-Secure Anti-Virus for Microsoft Exchange 6.30 and 6.31 does not properly detect certain password-protected files in a ZIP file, which allows remote attackers to bypass anti-virus protection.
Affected products
- F-Secure / f-secure_anti-virus6.30 – 6.30
- F-Secure / f-secure_anti-virus6.30_sr1 – 6.30_sr1
- F-Secure / f-secure_anti-virus6.31 – 6.31
References
- MISChttp://securitytracker.com/id?1012057
- VENDOR_ADVISORYhttp://secunia.com/advisories/13067
- MISChttp://www.securityfocus.com/bid/11600
- MISCftp://ftp.f-secure.com/support/hotfix/fsav-mse/fsavmse63x-02_readme.txt
- MISChttp://www.osvdb.org/11395
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/17944