icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Avira Anti-Virus PDF File Scan Evasion

Medium

Synopsis

The remote host is missing a critical security patch or upgrade.

Description

The remote client is running the Avira Anti-Virus engine.

This version of the Avira scan engine is vulnerable to a flaw wherein attackers can bypass the scan engine by submitting specially formatted 'PDF' files. An attacker, exploiting this flaw, would be able to pass malicious code through the scan engine.

Solution

Upgrade to Avira scan engine 8.2.0.168/7.9.0.168 or later.