OSVDB ID: 19749

Title: Multiple Anti-Virus Extended ASCII Filename Scan Bypass

Info

Disclosure
Sep 29, 2005

Discovery
Unknown

Dates

Exploit
Sep 29, 2005

Solution
Unknown

Description

 Multiple AntiVirus products contains a flaw that may allow a remote attacker to bypass antivirus protection. The problem is that these products do not scan filenames that contain extended ASCII characters, which may allow a remote attacker to execute arbitrary code resulting in a loss of integrity.

Classification

 Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available

Solution

 Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

SOFTWIN

BitDefender AntiVirus

 Unknown or Unspecified

Comodo Inc.

Trustix AntiVirus

 Unknown or Unspecified

ALWIL Software

avast! antivirus

 Unknown or Unspecified

Cat Computer Services (P) Ltd.

Quick Heal AntiVirus

 Unknown or Unspecified

Abacre Software

Abacre Antivirus

 Unknown or Unspecified

Deerfield.com

VisNetic AntiVirus

 Unknown or Unspecified

AntiVir PersonalProducts GmbH

AntiVir PersonalEdition

 Unknown or Unspecified

Tomasz Kojm

ClamAV AntiVirus for Windows

 Unknown or Unspecified

Antiy Labs

Antiy Ghostbusters Professional Edition

 Unknown or Unspecified

References

Credit
  • SecuBox fRoGGz - unsecureBrand New Doo Doowriteme.com -


Direct URL: http://osvdb.org/36218