Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
References
Link | Resource |
---|---|
http://secunia.com/advisories/13038/ | |
http://www.gentoo.org/security/en/glsa/glsa-200410-31.xml | Patch Vendor Advisory |
http://www.idefense.com/application/poi/display?id=153&type=vulnerabilities&flashstatus=true | Vendor Advisory |
http://www.kb.cert.org/vuls/id/492545 | US Government Resource |
http://www.mandriva.com/security/advisories?name=MDKSA-2004:118 | |
http://www.securityfocus.com/bid/11448 | Exploit Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/17761 | |
http://secunia.com/advisories/13038/ | |
http://www.gentoo.org/security/en/glsa/glsa-200410-31.xml | Patch Vendor Advisory |
http://www.idefense.com/application/poi/display?id=153&type=vulnerabilities&flashstatus=true | Vendor Advisory |
http://www.kb.cert.org/vuls/id/492545 | US Government Resource |
http://www.mandriva.com/security/advisories?name=MDKSA-2004:118 | |
http://www.securityfocus.com/bid/11448 | Exploit Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/17761 |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
20 Nov 2024, 23:50
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/13038/ - | |
References | () http://www.gentoo.org/security/en/glsa/glsa-200410-31.xml - Patch, Vendor Advisory | |
References | () http://www.idefense.com/application/poi/display?id=153&type=vulnerabilities&flashstatus=true - Vendor Advisory | |
References | () http://www.kb.cert.org/vuls/id/492545 - US Government Resource | |
References | () http://www.mandriva.com/security/advisories?name=MDKSA-2004:118 - | |
References | () http://www.securityfocus.com/bid/11448 - Exploit, Patch, Vendor Advisory | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/17761 - |
Information
Published : 2005-01-10 05:00
Updated : 2024-11-20 23:50
NVD link : CVE-2004-1096
Mitre link : CVE-2004-1096
CVE.ORG link : CVE-2004-1096
JSON object : View
Products Affected
kaspersky_lab
- kaspersky_anti-virus
sophos
- sophos_puremessage_anti-virus
- sophos_small_business_suite
- sophos_anti-virus
mandrakesoft
- mandrake_linux
suse
- suse_linux
ca
- etrust_antivirus
- etrust_secure_content_manager
broadcom
- inoculateit
- etrust_ez_antivirus
- etrust_ez_armor
- etrust_antivirus
- etrust_secure_content_manager
- etrust_intrusion_detection
- brightstor_arcserve_backup
- etrust_antivirus_gateway
eset_software
- nod32_antivirus
rav_antivirus
- rav_antivirus_for_mail_servers
- rav_antivirus_desktop
- rav_antivirus_for_file_servers
mcafee
- antivirus_engine
gentoo
- linux
CWE