ESET Anti-Virus Bypass CAB Scanning
High Nessus Network Monitor Plugin ID 5009
SynopsisThe remote host is Missing a critical security patch or upgrade
DescriptionThe remote client is running the ESET Anti-virus engine.
This version of ESET is vulnerable to a flaw wherein attackers can bypass the scan engine by submitting files within specially formatted 'CAB' archives. An attacker, exploiting this flaw, would be able to pass malicious code through the scan engine.
SolutionUpgrade to ESET update 4036 or higher.