F-Secure Anti-Virus for Windows system32 Directory Crafted File Detection Bypass
Low Nessus Plugin ID 26193
SynopsisThe remote Windows host has an antivirus application that may fail to scan selected files.
DescriptionThe remote host is running F-Secure Anti-Virus for Windows Servers.
According to its version, the installation of this software on the remote host may allow an attacker by bypass antivirus scanning by placing a specially crafted archive or packed executable into the 'system32' folder.
Note that this issue only affects 64-bit server platforms, which Nessus has determined the remote host to be.
SolutionApply the patch referenced in the vendor advisory above.