Security Advisories

FSC-2007-6: EXE & Packed file scanning vulnerabilities

Description

Specially crafted archives and packed executables can bypass antivirus scanning.

Placing a specially crafted archive or packed executable into the system32 folder may allow an attacker to bypass F-Secure's antivirus.

Affected Products

Risk Level: HIGH (Low/Medium/High/Critical)

  • F-Secure Anti-Virus for Windows Servers version 7.00

Platforms

Windows Server 2003 64-bit edition for x64 processors

Mitigating Factor

Exploitation of the vulnerabilities requires specially crafted archives or packed executables. Issue only exists on 64-bit server platforms. There are no known exploits.

Patch Available

Product Versions Download
F-Secure Anti-Virus for Windows Servers 7.00 ftp://ftp.f-secure.com/support/hotfix/fsav/fsav720-01-signed.fsfix

Credits

F-Secure wants to thank Mr Papadorotheoun for pinpointing this issue.

Date Issued: 2007-09-27
Last Updated: 2007-09-27

Get Support

For documentation and product support, visit our Support site.

Go Support

F-Secure Community

Give advice. Get advice. Share the knowledge on our free discussion forum.

Go Community