Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
CVE-2006-0338
CVE information
Published
Last Modified
CVSSv2.0 Severity
Impact Analysis
Description
Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allow remote attackers to hide arbitrary files and data via malformed (1) RAR and (2) ZIP archives, which are not properly scanned..
CVSSv2.0 Score
- Severity
- Medium
- Base Score
- 5/10
- Exploit Score
- 10/10
- Access Vector
- Network
- Access Complexity
- Low
- Authentication Required
- None
- Impact Score
- 2.9/10
- Confidentiality Impact
- None
- Availability Impact
- None
- Integrity Impact
- Partial
Products Affected
| CPE | Affected | Vulnerable | Excluding | Edit |
|---|---|---|---|---|
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:windows_server |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:workstations:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:windows_server |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:mimesweeper:*: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:internet_gatekeeper:6.32:*:*:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.62:*:samba_servers: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.64:*:linux_servers: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:mimesweeper:*: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.0:*:linux_client_se |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.61:*:linux_servers: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.64:*:linux_gateways |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:client_security |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.44:*:workstations:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:6.40:*:ms_exchange:*: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_personal_express:4.6:*:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:6.30:*:ms_exchange:*: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_gateways |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_personal_express:4.7:*:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:internet_gatekeeper:2.14:*:linux:*:*:*:*: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_servers: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:mimesweeper:*: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_servers: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:2005:*:*:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:internet_gatekeeper:6.42:*:*:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_personal_express:4.5:*:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:windows_servers |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_gateways |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:client_securit |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:6.30_sr1:*:ms_exchang |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.11:*:linux_server_s |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:2004:*:*:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:6.2:*:firewalls:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:6.01:*:client_securit |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_workstat |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_internet_security:2005:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:internet_gatekeeper:6.41:*:*:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.55:*:client_securit |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_personal_express:5.0:*:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:6.31:*:ms_exchange:*: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:internet_gatekeeper:2.06:*:linux:*:*:*:*: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.11:*:linux_client_s |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:6.2:*:ms_exchange:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_internet_security:2006:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_internet_security:2004:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:6.21:*:ms_exchange:*: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:citrix_servers |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:6.01:*:ms_exchange:*: |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.43:*:workstations:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.61:*:linux_gateways |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:mimesweeper:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:2003:*:*:*:*:*:*:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:workstations:* |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:5.0:*:linux_server_se |
Yes
|
- | - | |
| cpe:2.3:a:f-secure:f-secure_anti-virus:4.60:*:samba_servers: |
Yes
|
- | - |
References
- http://www.f-secure.com/security/fsc-2006-1.shtml
- http://www.securityfocus.com/bid/16309
- http://secunia.com/advisories/18529
- http://www.osvdb.org/22633
- http://securitytracker.com/id?1015507
- http://securitytracker.com/id?1015508
- http://securitytracker.com/id?1015509
- http://securitytracker.com/id?1015510
- http://www.ciac.org/ciac/bulletins/q-103.shtml
- http://www.vupen.com/english/advisories/2006/0257
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24199