CVE-2006-3490

critical

Description

F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier does not scan files contained on removable media when "Scan network drives" is disabled, which allows remote attackers to bypass anti-virus controls.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/27502

http://www.vupen.com/english/advisories/2006/2573

http://www.securityfocus.com/bid/18693

http://www.osvdb.org/26876

http://www.f-secure.com/security/fsc-2006-4.shtml

http://securitytracker.com/id?1016401

http://securitytracker.com/id?1016400

http://secunia.com/advisories/20858

Details

Source: Mitre, NVD

Published: 2006-07-10

Updated: 2017-07-20

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical