Avira AntiVir RAR/CAB/ZIP/LH Scan Evasion
Medium Nessus Plugin ID 38973
SynopsisThe remote host is running an antivirus application that is affected by a file evasion vulnerability.
DescriptionThe remote host is running an Avira AntiVir product. The scan engine of the installed product is earlier than 18.104.22.168 / 22.214.171.124. Such versions reportedly fail to properly inspect specially crafted RAR/CAB/ZIP/LH files. An attacker could embed code in such files in order to circumvent detection by antivirus software.
SolutionUse the Avira update feature to upgrade the scan engine to 126.96.36.199 / 188.8.131.52 or later.