CVE-2005-3376

Name of the Vulnerable Software and Affected Versions Kaspersky version 5.0.372

Description The issue allows remote attackers to bypass virus scanning by exploiting a multiple interpretation error. This can be achieved via a file, such as BAT, HTML, and EML, containing an "MZ" magic byte sequence, which is normally associated with EXE. As a result, the file is treated as a safe type but could still be executed as a dangerous file type by applications on the end system. An example of this exploit is a "triple headed" program that contains EXE, EML, and HTML content.

Recommendations For Kaspersky version 5.0.372, at the moment, there is no information about a newer version that contains a fix for this issue.