MidnightBSD

Advisories for rav_antivirus

CVE-2004-0932 HIGH

McAfee Anti-Virus Engine DATS drivers before 4398 released on Oct 13th 2004 and DATS Driver before 4397 October 6th 2004 allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sophos sophos_anti-virus 3.80
sophos sophos_anti-virus 3.83
gentoo linux *
ca etrust_antivirus 7.0_sp2
broadcom etrust_ez_armor 2.4
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.81
broadcom etrust_secure_content_manager 1.0
kaspersky_lab kaspersky_anti-virus 4.0
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.78d
broadcom etrust_ez_antivirus 6.3
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.1
eset_software nod32_antivirus 1.0.12
broadcom etrust_antivirus_gateway 7.1
broadcom inoculateit 6.0
broadcom brightstor_arcserve_backup 11.1
broadcom etrust_intrusion_detection 1.4.1.13
broadcom etrust_ez_antivirus 6.1
sophos sophos_anti-virus 3.84
rav_antivirus rav_antivirus_desktop 8.6
sophos sophos_small_business_suite 1.0
broadcom etrust_ez_antivirus 6.2
kaspersky_lab kaspersky_anti-virus 5.0
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.4.6
gentoo linux 1.4
broadcom etrust_ez_armor 2.0
sophos sophos_anti-virus 3.85
kaspersky_lab kaspersky_anti-virus 3.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
rav_antivirus rav_antivirus_for_file_servers 1.0
broadcom etrust_secure_content_manager 1.1
sophos sophos_anti-virus 3.86
broadcom etrust_ez_armor 2.3
archive_zip archive_zip 1.13
broadcom etrust_antivirus 7.0
broadcom etrust_intrusion_detection 1.5
mcafee antivirus_engine 4.3.20
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
sophos sophos_anti-virus 3.79
CVE-2004-0933 HIGH

Computer Associates (CA) InoculateIT 6.0, eTrust Antivirus r6.0 through r7.1, eTrust Antivirus for the Gateway r7.0 and r7.1, eTrust Secure Content Manager, eTrust Intrusion Detection, EZ-Armor 2.0 through 2.4, and EZ-Antivirus 6.1 through 6.3 allow remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sophos sophos_anti-virus 3.80
sophos sophos_anti-virus 3.83
gentoo linux *
ca etrust_antivirus 7.0_sp2
broadcom etrust_ez_armor 2.4
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.81
broadcom etrust_secure_content_manager 1.0
kaspersky_lab kaspersky_anti-virus 4.0
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.78d
broadcom etrust_ez_antivirus 6.3
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.1
eset_software nod32_antivirus 1.0.12
broadcom etrust_antivirus_gateway 7.1
broadcom inoculateit 6.0
broadcom brightstor_arcserve_backup 11.1
broadcom etrust_intrusion_detection 1.4.1.13
broadcom etrust_ez_antivirus 6.1
sophos sophos_anti-virus 3.84
rav_antivirus rav_antivirus_desktop 8.6
sophos sophos_small_business_suite 1.0
broadcom etrust_ez_antivirus 6.2
kaspersky_lab kaspersky_anti-virus 5.0
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.4.6
gentoo linux 1.4
broadcom etrust_ez_armor 2.0
sophos sophos_anti-virus 3.85
kaspersky_lab kaspersky_anti-virus 3.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
rav_antivirus rav_antivirus_for_file_servers 1.0
broadcom etrust_secure_content_manager 1.1
sophos sophos_anti-virus 3.86
broadcom etrust_ez_armor 2.3
archive_zip archive_zip 1.13
broadcom etrust_antivirus 7.0
broadcom etrust_intrusion_detection 1.5
mcafee antivirus_engine 4.3.20
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
sophos sophos_anti-virus 3.79
CVE-2004-0934 HIGH

Kaspersky 3.x to 4.x allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sophos sophos_anti-virus 3.80
sophos sophos_anti-virus 3.83
gentoo linux *
ca etrust_antivirus 7.0_sp2
broadcom etrust_ez_armor 2.4
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.81
broadcom etrust_secure_content_manager 1.0
kaspersky_lab kaspersky_anti-virus 4.0
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.78d
broadcom etrust_ez_antivirus 6.3
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.1
eset_software nod32_antivirus 1.0.12
broadcom etrust_antivirus_gateway 7.1
broadcom inoculateit 6.0
broadcom brightstor_arcserve_backup 11.1
broadcom etrust_intrusion_detection 1.4.1.13
broadcom etrust_ez_antivirus 6.1
sophos sophos_anti-virus 3.84
rav_antivirus rav_antivirus_desktop 8.6
sophos sophos_small_business_suite 1.0
broadcom etrust_ez_antivirus 6.2
kaspersky_lab kaspersky_anti-virus 5.0
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.4.6
gentoo linux 1.4
broadcom etrust_ez_armor 2.0
sophos sophos_anti-virus 3.85
kaspersky_lab kaspersky_anti-virus 3.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
rav_antivirus rav_antivirus_for_file_servers 1.0
broadcom etrust_secure_content_manager 1.1
sophos sophos_anti-virus 3.86
broadcom etrust_ez_armor 2.3
archive_zip archive_zip 1.13
broadcom etrust_antivirus 7.0
broadcom etrust_intrusion_detection 1.5
mcafee antivirus_engine 4.3.20
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
sophos sophos_anti-virus 3.79
CVE-2004-0935 HIGH

Eset Anti-Virus before 1.020 (16th September 2004) allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sophos sophos_anti-virus 3.80
sophos sophos_anti-virus 3.83
gentoo linux *
ca etrust_antivirus 7.0_sp2
broadcom etrust_ez_armor 2.4
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.81
broadcom etrust_secure_content_manager 1.0
kaspersky_lab kaspersky_anti-virus 4.0
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.78d
broadcom etrust_ez_antivirus 6.3
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.1
eset_software nod32_antivirus 1.0.12
broadcom etrust_antivirus_gateway 7.1
broadcom inoculateit 6.0
broadcom brightstor_arcserve_backup 11.1
broadcom etrust_intrusion_detection 1.4.1.13
broadcom etrust_ez_antivirus 6.1
sophos sophos_anti-virus 3.84
rav_antivirus rav_antivirus_desktop 8.6
sophos sophos_small_business_suite 1.0
broadcom etrust_ez_antivirus 6.2
kaspersky_lab kaspersky_anti-virus 5.0
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.4.6
gentoo linux 1.4
broadcom etrust_ez_armor 2.0
sophos sophos_anti-virus 3.85
kaspersky_lab kaspersky_anti-virus 3.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
rav_antivirus rav_antivirus_for_file_servers 1.0
broadcom etrust_secure_content_manager 1.1
sophos sophos_anti-virus 3.86
broadcom etrust_ez_armor 2.3
archive_zip archive_zip 1.13
broadcom etrust_antivirus 7.0
broadcom etrust_intrusion_detection 1.5
mcafee antivirus_engine 4.3.20
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
sophos sophos_anti-virus 3.79
CVE-2004-0936 HIGH

RAV antivirus allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sophos sophos_anti-virus 3.80
sophos sophos_anti-virus 3.83
gentoo linux *
ca etrust_antivirus 7.0_sp2
broadcom etrust_ez_armor 2.4
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.81
broadcom etrust_secure_content_manager 1.0
kaspersky_lab kaspersky_anti-virus 4.0
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.78d
broadcom etrust_ez_antivirus 6.3
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.1
eset_software nod32_antivirus 1.0.12
broadcom etrust_antivirus_gateway 7.1
broadcom inoculateit 6.0
broadcom brightstor_arcserve_backup 11.1
broadcom etrust_intrusion_detection 1.4.1.13
broadcom etrust_ez_antivirus 6.1
sophos sophos_anti-virus 3.84
rav_antivirus rav_antivirus_desktop 8.6
sophos sophos_small_business_suite 1.0
broadcom etrust_ez_antivirus 6.2
kaspersky_lab kaspersky_anti-virus 5.0
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.4.6
gentoo linux 1.4
broadcom etrust_ez_armor 2.0
sophos sophos_anti-virus 3.85
kaspersky_lab kaspersky_anti-virus 3.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
rav_antivirus rav_antivirus_for_file_servers 1.0
broadcom etrust_secure_content_manager 1.1
sophos sophos_anti-virus 3.86
broadcom etrust_ez_armor 2.3
archive_zip archive_zip 1.13
broadcom etrust_antivirus 7.0
broadcom etrust_intrusion_detection 1.5
mcafee antivirus_engine 4.3.20
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
sophos sophos_anti-virus 3.79
CVE-2004-0937 HIGH

Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sophos sophos_anti-virus 3.80
sophos sophos_anti-virus 3.83
gentoo linux *
ca etrust_antivirus 7.0_sp2
broadcom etrust_ez_armor 2.4
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.81
broadcom etrust_secure_content_manager 1.0
kaspersky_lab kaspersky_anti-virus 4.0
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.78d
broadcom etrust_ez_antivirus 6.3
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.1
eset_software nod32_antivirus 1.0.12
broadcom etrust_antivirus_gateway 7.1
broadcom inoculateit 6.0
broadcom brightstor_arcserve_backup 11.1
broadcom etrust_intrusion_detection 1.4.1.13
broadcom etrust_ez_antivirus 6.1
sophos sophos_anti-virus 3.84
rav_antivirus rav_antivirus_desktop 8.6
sophos sophos_small_business_suite 1.0
broadcom etrust_ez_antivirus 6.2
kaspersky_lab kaspersky_anti-virus 5.0
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.4.6
gentoo linux 1.4
broadcom etrust_ez_armor 2.0
sophos sophos_anti-virus 3.85
kaspersky_lab kaspersky_anti-virus 3.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
rav_antivirus rav_antivirus_for_file_servers 1.0
broadcom etrust_secure_content_manager 1.1
sophos sophos_anti-virus 3.86
broadcom etrust_ez_armor 2.3
archive_zip archive_zip 1.13
broadcom etrust_antivirus 7.0
broadcom etrust_intrusion_detection 1.5
mcafee antivirus_engine 4.3.20
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
sophos sophos_anti-virus 3.79
CVE-2004-1096 HIGH

Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
sophos sophos_anti-virus 3.80
sophos sophos_anti-virus 3.83
gentoo linux *
ca etrust_antivirus 7.0_sp2
broadcom etrust_ez_armor 2.4
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.81
broadcom etrust_secure_content_manager 1.0
kaspersky_lab kaspersky_anti-virus 4.0
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.78d
broadcom etrust_ez_antivirus 6.3
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.1
eset_software nod32_antivirus 1.0.12
broadcom etrust_antivirus_gateway 7.1
broadcom inoculateit 6.0
broadcom brightstor_arcserve_backup 11.1
broadcom etrust_intrusion_detection 1.4.1.13
broadcom etrust_ez_antivirus 6.1
sophos sophos_anti-virus 3.84
rav_antivirus rav_antivirus_desktop 8.6
sophos sophos_small_business_suite 1.0
broadcom etrust_ez_antivirus 6.2
kaspersky_lab kaspersky_anti-virus 5.0
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.4.6
gentoo linux 1.4
broadcom etrust_ez_armor 2.0
sophos sophos_anti-virus 3.85
kaspersky_lab kaspersky_anti-virus 3.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
rav_antivirus rav_antivirus_for_file_servers 1.0
broadcom etrust_secure_content_manager 1.1
sophos sophos_anti-virus 3.86
broadcom etrust_ez_armor 2.3
broadcom etrust_antivirus 7.0
broadcom etrust_intrusion_detection 1.5
mcafee antivirus_engine 4.3.20
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
sophos sophos_anti-virus 3.79