F-Secure Products ZIP/RAR File Scan Evasion (FSC-2009-1)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

An antivirus application installed on the remote host is affected by
a scan evasion vulnerability.

Description :

The remote host has an antivirus product from F-Secure installed. The
installed version of the product fails to accurately scan certain ZIP
and RAR archive files. Therefore, it may be possible for such files to
evade detection from the scanning engine.

See also :

http://www.nessus.org/u?7cf449be

Solution :

Apply the vendor-supplied patches.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N)
CVSS Temporal Score : 4.3
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 38718 (fsecure_fsc_2009_01.nasl)

Bugtraq ID: 34849

CVE ID: CVE-2009-1782

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now