|Category:||Remote file access|
|Title:||AVG AntiVirus Engine Malware Detection Bypass Vulnerability (Windows)|
|Summary:||This host is installed with AVG AntiVirus Product Suite for Windows; and is prone to Malware Detection Bypass Vulnerability.|
This host is installed with AVG AntiVirus Product Suite for Windows
and is prone to Malware Detection Bypass Vulnerability.
Error in the file parsing engine can be exploited to bypass the anti-virus
scanning functionality via a specially crafted ZIP or RAR file.
Successful exploitation will let the attacker craft malwares in a crafted
archive file and spread it across the network to gain access to sensitive
information or cause damage to the remote system.
AVG Anti-Virus prior to 8.5.323
AVG File Server Edition prior to 8.5.323 on Windows
Upgrade to the AVG Anti-Virus Scanning Engine build 8.5.323.
BugTraq ID: 34895|
Common Vulnerability Exposure (CVE) ID: CVE-2009-1784
Bugtraq: 20090509 [TZO-20-2009] AVG ZIP evasion / bypass (Google Search)
XForce ISS Database: avg-zip-security-bypass(50426)
|Copyright||Copyright (C) 2009 Greenbone Networks GmbH|
|This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.