Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
 home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerability

vulnerability note 8794

F-PROT Antivirus: bypassing via TAR

Synthesis of the vulnerability

An attacker can create a TAR archive containing a virus which is not detected by F-PROT products.
Severity: 2/4.
Creation date: 15/06/2009.

Impacted products

Description of the vulnerability

F-PROT products detect viruses contained in TAR archives.

However, an attacker can create a slightly malformed archive, which can still be opened by Winzip tools, but which cannot be opened by the antivirus.

An attacker can therefore create a TAR archive containing a virus which is not detected by F-PROT products.

Share this bulletin

Delicious Digg Facebook Google bookmarks LinkedIn Mail Reddit StumbleUpon Technorati Twitter Yahoo 

Complete Vigil@nce bulletin

F-PROT Antivirus: bypassing via TAR

Characteristics

Title: F-PROT Antivirus: bypassing via TAR.
Keywords: -PROT Antivirus F-PROT TAR Winzip bypassing.
Identifiers: BID-35355, TZO-33-2009, VIGILANCE-VUL-8794.

Information sources

Publications and announces

Solutions for this vulnerability

Patch or workaround

Computer vulnerabilities tracking service

Vigil@nce provides a network vulnerability watch. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. Each administrator can customize the list of products for which he wants to receive vulnerability alerts. The technology watch team tracks security threats targeting the computer system.



















Copyright 1999-2012 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française