Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

F-Secure Scan Evasion

Medium

Synopsis

The remote antivirus scanner may be tricked into not scanning certain files.

Description

The remote host is running F-Secure, a firewall and antivirus software package. This version of F-Secure is vulnerable to a flaw where specially crafted file names are not scanned. This can lead to potentially damaging files not being deleted or quarantined. An attacker exploiting this flaw would only need the ability to create these files and deliver them to a vulnerable F-Secure user. Successful exploitation would result in a false sense of security.

Solution

Upgrade or patch according to vendor recommendations.