CVE-2004-2442

Name of the Vulnerable Software and Affected Versions: F-Secure Anti-Virus products, including: F-Secure Workstation versions 5.43 and earlier F-Secure Windows Servers versions 5.50 and earlier F-Secure MIMEsweeper versions 5.50 and earlier F-Secure Anti-Virus for Linux Servers and Gateways versions 4.61 and earlier

Description: A multiple interpretation error in F-Secure Anti-Virus products allows remote attackers to bypass antivirus protection. This is achieved by using a compressed file with both local and global headers set to zero, which does not prevent the file from being opened on the target system.

Recommendations: For F-Secure Workstation versions 5.43 and earlier, update to a version later than 5.43 to resolve the issue. For F-Secure Windows Servers versions 5.50 and earlier, update to a version later than 5.50 to resolve the issue. For F-Secure MIMEsweeper versions 5.50 and earlier, update to a version later than 5.50 to resolve the issue. For F-Secure Anti-Virus for Linux Servers and Gateways versions 4.61 and earlier, update to a version later than 4.61 to resolve the issue. As a temporary workaround, consider restricting the opening of compressed files with suspicious headers to minimize the risk of exploitation.