Kaspersky Antivirus Client MIME-encoded Scan Bypass
Medium Nessus Network Monitor Plugin ID 3841
SynopsisThe antivirus product can be tricked into not scanning potentially malicious files.
DescriptionThe remote host is running the Kaspersky antivirus client.
This version of Kaspersky is vulnerable to a flaw where file scanning can be bypassed by passing malformed MIME-encoded requests. An attacker exploiting this flaw would be able to send malicious files through the antivirus product without being detected.
SolutionUpgrade or patch according to vendor recommendations.