McAfee Anti-Virus Engine DATS drivers before 4398 released on Oct 13th 2004 and DATS Driver before 4397 October 6th 2004 allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| sophos | sophos_anti-virus | 3.80 |
| sophos | sophos_anti-virus | 3.83 |
| gentoo | linux | * |
| ca | etrust_antivirus | 7.0_sp2 |
| broadcom | etrust_ez_armor | 2.4 |
| broadcom | etrust_antivirus_gateway | 7.0 |
| sophos | sophos_anti-virus | 3.81 |
| broadcom | etrust_secure_content_manager | 1.0 |
| kaspersky_lab | kaspersky_anti-virus | 4.0 |
| eset_software | nod32_antivirus | 1.0.13 |
| sophos | sophos_anti-virus | 3.78d |
| broadcom | etrust_ez_antivirus | 6.3 |
| rav_antivirus | rav_antivirus_for_mail_servers | 8.4.2 |
| eset_software | nod32_antivirus | 1.0.11 |
| broadcom | etrust_antivirus | 7.1 |
| eset_software | nod32_antivirus | 1.0.12 |
| broadcom | etrust_antivirus_gateway | 7.1 |
| broadcom | inoculateit | 6.0 |
| broadcom | brightstor_arcserve_backup | 11.1 |
| broadcom | etrust_intrusion_detection | 1.4.1.13 |
| broadcom | etrust_ez_antivirus | 6.1 |
| sophos | sophos_anti-virus | 3.84 |
| rav_antivirus | rav_antivirus_desktop | 8.6 |
| sophos | sophos_small_business_suite | 1.0 |
| broadcom | etrust_ez_antivirus | 6.2 |
| kaspersky_lab | kaspersky_anti-virus | 5.0 |
| mandrakesoft | mandrake_linux | 10.1 |
| sophos | sophos_anti-virus | 3.4.6 |
| gentoo | linux | 1.4 |
| broadcom | etrust_ez_armor | 2.0 |
| sophos | sophos_anti-virus | 3.85 |
| kaspersky_lab | kaspersky_anti-virus | 3.0 |
| sophos | sophos_anti-virus | 3.82 |
| broadcom | etrust_intrusion_detection | 1.4.5 |
| ca | etrust_secure_content_manager | 1.0 |
| suse | suse_linux | 9.2 |
| rav_antivirus | rav_antivirus_for_file_servers | 1.0 |
| broadcom | etrust_secure_content_manager | 1.1 |
| sophos | sophos_anti-virus | 3.86 |
| broadcom | etrust_ez_armor | 2.3 |
| archive_zip | archive_zip | 1.13 |
| broadcom | etrust_antivirus | 7.0 |
| broadcom | etrust_intrusion_detection | 1.5 |
| mcafee | antivirus_engine | 4.3.20 |
| sophos | sophos_anti-virus | 3.78 |
| sophos | sophos_puremessage_anti-virus | 4.6 |
| sophos | sophos_anti-virus | 3.79 |
Computer Associates (CA) InoculateIT 6.0, eTrust Antivirus r6.0 through r7.1, eTrust Antivirus for the Gateway r7.0 and r7.1, eTrust Secure Content Manager, eTrust Intrusion Detection, EZ-Armor 2.0 through 2.4, and EZ-Antivirus 6.1 through 6.3 allow remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| sophos | sophos_anti-virus | 3.80 |
| sophos | sophos_anti-virus | 3.83 |
| gentoo | linux | * |
| ca | etrust_antivirus | 7.0_sp2 |
| broadcom | etrust_ez_armor | 2.4 |
| broadcom | etrust_antivirus_gateway | 7.0 |
| sophos | sophos_anti-virus | 3.81 |
| broadcom | etrust_secure_content_manager | 1.0 |
| kaspersky_lab | kaspersky_anti-virus | 4.0 |
| eset_software | nod32_antivirus | 1.0.13 |
| sophos | sophos_anti-virus | 3.78d |
| broadcom | etrust_ez_antivirus | 6.3 |
| rav_antivirus | rav_antivirus_for_mail_servers | 8.4.2 |
| eset_software | nod32_antivirus | 1.0.11 |
| broadcom | etrust_antivirus | 7.1 |
| eset_software | nod32_antivirus | 1.0.12 |
| broadcom | etrust_antivirus_gateway | 7.1 |
| broadcom | inoculateit | 6.0 |
| broadcom | brightstor_arcserve_backup | 11.1 |
| broadcom | etrust_intrusion_detection | 1.4.1.13 |
| broadcom | etrust_ez_antivirus | 6.1 |
| sophos | sophos_anti-virus | 3.84 |
| rav_antivirus | rav_antivirus_desktop | 8.6 |
| sophos | sophos_small_business_suite | 1.0 |
| broadcom | etrust_ez_antivirus | 6.2 |
| kaspersky_lab | kaspersky_anti-virus | 5.0 |
| mandrakesoft | mandrake_linux | 10.1 |
| sophos | sophos_anti-virus | 3.4.6 |
| gentoo | linux | 1.4 |
| broadcom | etrust_ez_armor | 2.0 |
| sophos | sophos_anti-virus | 3.85 |
| kaspersky_lab | kaspersky_anti-virus | 3.0 |
| sophos | sophos_anti-virus | 3.82 |
| broadcom | etrust_intrusion_detection | 1.4.5 |
| ca | etrust_secure_content_manager | 1.0 |
| suse | suse_linux | 9.2 |
| rav_antivirus | rav_antivirus_for_file_servers | 1.0 |
| broadcom | etrust_secure_content_manager | 1.1 |
| sophos | sophos_anti-virus | 3.86 |
| broadcom | etrust_ez_armor | 2.3 |
| archive_zip | archive_zip | 1.13 |
| broadcom | etrust_antivirus | 7.0 |
| broadcom | etrust_intrusion_detection | 1.5 |
| mcafee | antivirus_engine | 4.3.20 |
| sophos | sophos_anti-virus | 3.78 |
| sophos | sophos_puremessage_anti-virus | 4.6 |
| sophos | sophos_anti-virus | 3.79 |
Kaspersky 3.x to 4.x allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| sophos | sophos_anti-virus | 3.80 |
| sophos | sophos_anti-virus | 3.83 |
| gentoo | linux | * |
| ca | etrust_antivirus | 7.0_sp2 |
| broadcom | etrust_ez_armor | 2.4 |
| broadcom | etrust_antivirus_gateway | 7.0 |
| sophos | sophos_anti-virus | 3.81 |
| broadcom | etrust_secure_content_manager | 1.0 |
| kaspersky_lab | kaspersky_anti-virus | 4.0 |
| eset_software | nod32_antivirus | 1.0.13 |
| sophos | sophos_anti-virus | 3.78d |
| broadcom | etrust_ez_antivirus | 6.3 |
| rav_antivirus | rav_antivirus_for_mail_servers | 8.4.2 |
| eset_software | nod32_antivirus | 1.0.11 |
| broadcom | etrust_antivirus | 7.1 |
| eset_software | nod32_antivirus | 1.0.12 |
| broadcom | etrust_antivirus_gateway | 7.1 |
| broadcom | inoculateit | 6.0 |
| broadcom | brightstor_arcserve_backup | 11.1 |
| broadcom | etrust_intrusion_detection | 1.4.1.13 |
| broadcom | etrust_ez_antivirus | 6.1 |
| sophos | sophos_anti-virus | 3.84 |
| rav_antivirus | rav_antivirus_desktop | 8.6 |
| sophos | sophos_small_business_suite | 1.0 |
| broadcom | etrust_ez_antivirus | 6.2 |
| kaspersky_lab | kaspersky_anti-virus | 5.0 |
| mandrakesoft | mandrake_linux | 10.1 |
| sophos | sophos_anti-virus | 3.4.6 |
| gentoo | linux | 1.4 |
| broadcom | etrust_ez_armor | 2.0 |
| sophos | sophos_anti-virus | 3.85 |
| kaspersky_lab | kaspersky_anti-virus | 3.0 |
| sophos | sophos_anti-virus | 3.82 |
| broadcom | etrust_intrusion_detection | 1.4.5 |
| ca | etrust_secure_content_manager | 1.0 |
| suse | suse_linux | 9.2 |
| rav_antivirus | rav_antivirus_for_file_servers | 1.0 |
| broadcom | etrust_secure_content_manager | 1.1 |
| sophos | sophos_anti-virus | 3.86 |
| broadcom | etrust_ez_armor | 2.3 |
| archive_zip | archive_zip | 1.13 |
| broadcom | etrust_antivirus | 7.0 |
| broadcom | etrust_intrusion_detection | 1.5 |
| mcafee | antivirus_engine | 4.3.20 |
| sophos | sophos_anti-virus | 3.78 |
| sophos | sophos_puremessage_anti-virus | 4.6 |
| sophos | sophos_anti-virus | 3.79 |
Eset Anti-Virus before 1.020 (16th September 2004) allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| sophos | sophos_anti-virus | 3.80 |
| sophos | sophos_anti-virus | 3.83 |
| gentoo | linux | * |
| ca | etrust_antivirus | 7.0_sp2 |
| broadcom | etrust_ez_armor | 2.4 |
| broadcom | etrust_antivirus_gateway | 7.0 |
| sophos | sophos_anti-virus | 3.81 |
| broadcom | etrust_secure_content_manager | 1.0 |
| kaspersky_lab | kaspersky_anti-virus | 4.0 |
| eset_software | nod32_antivirus | 1.0.13 |
| sophos | sophos_anti-virus | 3.78d |
| broadcom | etrust_ez_antivirus | 6.3 |
| rav_antivirus | rav_antivirus_for_mail_servers | 8.4.2 |
| eset_software | nod32_antivirus | 1.0.11 |
| broadcom | etrust_antivirus | 7.1 |
| eset_software | nod32_antivirus | 1.0.12 |
| broadcom | etrust_antivirus_gateway | 7.1 |
| broadcom | inoculateit | 6.0 |
| broadcom | brightstor_arcserve_backup | 11.1 |
| broadcom | etrust_intrusion_detection | 1.4.1.13 |
| broadcom | etrust_ez_antivirus | 6.1 |
| sophos | sophos_anti-virus | 3.84 |
| rav_antivirus | rav_antivirus_desktop | 8.6 |
| sophos | sophos_small_business_suite | 1.0 |
| broadcom | etrust_ez_antivirus | 6.2 |
| kaspersky_lab | kaspersky_anti-virus | 5.0 |
| mandrakesoft | mandrake_linux | 10.1 |
| sophos | sophos_anti-virus | 3.4.6 |
| gentoo | linux | 1.4 |
| broadcom | etrust_ez_armor | 2.0 |
| sophos | sophos_anti-virus | 3.85 |
| kaspersky_lab | kaspersky_anti-virus | 3.0 |
| sophos | sophos_anti-virus | 3.82 |
| broadcom | etrust_intrusion_detection | 1.4.5 |
| ca | etrust_secure_content_manager | 1.0 |
| suse | suse_linux | 9.2 |
| rav_antivirus | rav_antivirus_for_file_servers | 1.0 |
| broadcom | etrust_secure_content_manager | 1.1 |
| sophos | sophos_anti-virus | 3.86 |
| broadcom | etrust_ez_armor | 2.3 |
| archive_zip | archive_zip | 1.13 |
| broadcom | etrust_antivirus | 7.0 |
| broadcom | etrust_intrusion_detection | 1.5 |
| mcafee | antivirus_engine | 4.3.20 |
| sophos | sophos_anti-virus | 3.78 |
| sophos | sophos_puremessage_anti-virus | 4.6 |
| sophos | sophos_anti-virus | 3.79 |
RAV antivirus allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| sophos | sophos_anti-virus | 3.80 |
| sophos | sophos_anti-virus | 3.83 |
| gentoo | linux | * |
| ca | etrust_antivirus | 7.0_sp2 |
| broadcom | etrust_ez_armor | 2.4 |
| broadcom | etrust_antivirus_gateway | 7.0 |
| sophos | sophos_anti-virus | 3.81 |
| broadcom | etrust_secure_content_manager | 1.0 |
| kaspersky_lab | kaspersky_anti-virus | 4.0 |
| eset_software | nod32_antivirus | 1.0.13 |
| sophos | sophos_anti-virus | 3.78d |
| broadcom | etrust_ez_antivirus | 6.3 |
| rav_antivirus | rav_antivirus_for_mail_servers | 8.4.2 |
| eset_software | nod32_antivirus | 1.0.11 |
| broadcom | etrust_antivirus | 7.1 |
| eset_software | nod32_antivirus | 1.0.12 |
| broadcom | etrust_antivirus_gateway | 7.1 |
| broadcom | inoculateit | 6.0 |
| broadcom | brightstor_arcserve_backup | 11.1 |
| broadcom | etrust_intrusion_detection | 1.4.1.13 |
| broadcom | etrust_ez_antivirus | 6.1 |
| sophos | sophos_anti-virus | 3.84 |
| rav_antivirus | rav_antivirus_desktop | 8.6 |
| sophos | sophos_small_business_suite | 1.0 |
| broadcom | etrust_ez_antivirus | 6.2 |
| kaspersky_lab | kaspersky_anti-virus | 5.0 |
| mandrakesoft | mandrake_linux | 10.1 |
| sophos | sophos_anti-virus | 3.4.6 |
| gentoo | linux | 1.4 |
| broadcom | etrust_ez_armor | 2.0 |
| sophos | sophos_anti-virus | 3.85 |
| kaspersky_lab | kaspersky_anti-virus | 3.0 |
| sophos | sophos_anti-virus | 3.82 |
| broadcom | etrust_intrusion_detection | 1.4.5 |
| ca | etrust_secure_content_manager | 1.0 |
| suse | suse_linux | 9.2 |
| rav_antivirus | rav_antivirus_for_file_servers | 1.0 |
| broadcom | etrust_secure_content_manager | 1.1 |
| sophos | sophos_anti-virus | 3.86 |
| broadcom | etrust_ez_armor | 2.3 |
| archive_zip | archive_zip | 1.13 |
| broadcom | etrust_antivirus | 7.0 |
| broadcom | etrust_intrusion_detection | 1.5 |
| mcafee | antivirus_engine | 4.3.20 |
| sophos | sophos_anti-virus | 3.78 |
| sophos | sophos_puremessage_anti-virus | 4.6 |
| sophos | sophos_anti-virus | 3.79 |
Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| sophos | sophos_anti-virus | 3.80 |
| sophos | sophos_anti-virus | 3.83 |
| gentoo | linux | * |
| ca | etrust_antivirus | 7.0_sp2 |
| broadcom | etrust_ez_armor | 2.4 |
| broadcom | etrust_antivirus_gateway | 7.0 |
| sophos | sophos_anti-virus | 3.81 |
| broadcom | etrust_secure_content_manager | 1.0 |
| kaspersky_lab | kaspersky_anti-virus | 4.0 |
| eset_software | nod32_antivirus | 1.0.13 |
| sophos | sophos_anti-virus | 3.78d |
| broadcom | etrust_ez_antivirus | 6.3 |
| rav_antivirus | rav_antivirus_for_mail_servers | 8.4.2 |
| eset_software | nod32_antivirus | 1.0.11 |
| broadcom | etrust_antivirus | 7.1 |
| eset_software | nod32_antivirus | 1.0.12 |
| broadcom | etrust_antivirus_gateway | 7.1 |
| broadcom | inoculateit | 6.0 |
| broadcom | brightstor_arcserve_backup | 11.1 |
| broadcom | etrust_intrusion_detection | 1.4.1.13 |
| broadcom | etrust_ez_antivirus | 6.1 |
| sophos | sophos_anti-virus | 3.84 |
| rav_antivirus | rav_antivirus_desktop | 8.6 |
| sophos | sophos_small_business_suite | 1.0 |
| broadcom | etrust_ez_antivirus | 6.2 |
| kaspersky_lab | kaspersky_anti-virus | 5.0 |
| mandrakesoft | mandrake_linux | 10.1 |
| sophos | sophos_anti-virus | 3.4.6 |
| gentoo | linux | 1.4 |
| broadcom | etrust_ez_armor | 2.0 |
| sophos | sophos_anti-virus | 3.85 |
| kaspersky_lab | kaspersky_anti-virus | 3.0 |
| sophos | sophos_anti-virus | 3.82 |
| broadcom | etrust_intrusion_detection | 1.4.5 |
| ca | etrust_secure_content_manager | 1.0 |
| suse | suse_linux | 9.2 |
| rav_antivirus | rav_antivirus_for_file_servers | 1.0 |
| broadcom | etrust_secure_content_manager | 1.1 |
| sophos | sophos_anti-virus | 3.86 |
| broadcom | etrust_ez_armor | 2.3 |
| archive_zip | archive_zip | 1.13 |
| broadcom | etrust_antivirus | 7.0 |
| broadcom | etrust_intrusion_detection | 1.5 |
| mcafee | antivirus_engine | 4.3.20 |
| sophos | sophos_anti-virus | 3.78 |
| sophos | sophos_puremessage_anti-virus | 4.6 |
| sophos | sophos_anti-virus | 3.79 |
Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| sophos | sophos_anti-virus | 3.80 |
| sophos | sophos_anti-virus | 3.83 |
| gentoo | linux | * |
| ca | etrust_antivirus | 7.0_sp2 |
| broadcom | etrust_ez_armor | 2.4 |
| broadcom | etrust_antivirus_gateway | 7.0 |
| sophos | sophos_anti-virus | 3.81 |
| broadcom | etrust_secure_content_manager | 1.0 |
| kaspersky_lab | kaspersky_anti-virus | 4.0 |
| eset_software | nod32_antivirus | 1.0.13 |
| sophos | sophos_anti-virus | 3.78d |
| broadcom | etrust_ez_antivirus | 6.3 |
| rav_antivirus | rav_antivirus_for_mail_servers | 8.4.2 |
| eset_software | nod32_antivirus | 1.0.11 |
| broadcom | etrust_antivirus | 7.1 |
| eset_software | nod32_antivirus | 1.0.12 |
| broadcom | etrust_antivirus_gateway | 7.1 |
| broadcom | inoculateit | 6.0 |
| broadcom | brightstor_arcserve_backup | 11.1 |
| broadcom | etrust_intrusion_detection | 1.4.1.13 |
| broadcom | etrust_ez_antivirus | 6.1 |
| sophos | sophos_anti-virus | 3.84 |
| rav_antivirus | rav_antivirus_desktop | 8.6 |
| sophos | sophos_small_business_suite | 1.0 |
| broadcom | etrust_ez_antivirus | 6.2 |
| kaspersky_lab | kaspersky_anti-virus | 5.0 |
| mandrakesoft | mandrake_linux | 10.1 |
| sophos | sophos_anti-virus | 3.4.6 |
| gentoo | linux | 1.4 |
| broadcom | etrust_ez_armor | 2.0 |
| sophos | sophos_anti-virus | 3.85 |
| kaspersky_lab | kaspersky_anti-virus | 3.0 |
| sophos | sophos_anti-virus | 3.82 |
| broadcom | etrust_intrusion_detection | 1.4.5 |
| ca | etrust_secure_content_manager | 1.0 |
| suse | suse_linux | 9.2 |
| rav_antivirus | rav_antivirus_for_file_servers | 1.0 |
| broadcom | etrust_secure_content_manager | 1.1 |
| sophos | sophos_anti-virus | 3.86 |
| broadcom | etrust_ez_armor | 2.3 |
| broadcom | etrust_antivirus | 7.0 |
| broadcom | etrust_intrusion_detection | 1.5 |
| mcafee | antivirus_engine | 4.3.20 |
| sophos | sophos_anti-virus | 3.78 |
| sophos | sophos_puremessage_anti-virus | 4.6 |
| sophos | sophos_anti-virus | 3.79 |