McAfee Antivirus ZIP / RAR Scan Evasion
Medium Nessus Plugin ID 38654
SynopsisAn antivirus application installed on the remote host is affected by a scan evasion vulnerability.
DescriptionThe McAfee antivirus application installed on the remote host is affected by a scan evasion vulnerability due to the virus definitions being out of date. In this case, the DAT file version of the installed antivirus product is prior to 5600. An attacker can exploit this, by embedding malicious code in a specially crafted ZIP or RAR file, to evade detection by the scanning engine.
SolutionUpdate the McAfee DAT file to version 5600 or later.