Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

AVG Scanning Engine UPX Parsing Denial of Service Vulnerability



The remote host is vulnerable to a flaw which allows malcode to be passed


AVG Anti-Virus is installed on the remote Windows host. The version of AVG Anti-Virus installed on the remote host is affected by a flaw wherein remote attackers can bypass the scanning engine by sending specially formatted 'rar' and 'zip' archive files. An attacker, exploiting this flaw, would only need the ability to send email to valid recipients on the target server. Successful exploitation would result in the attacker being able to pass malware through the AVG server.


Upgrade to AVG 8.5 323 or later.