CVE-2005-3377

Name of the Vulnerable Software and Affected Versions McAfee Internet Security Suite version 9.1.08 McAfee Corporate version 8.0.0 patch 10

Description The issue allows remote attackers to bypass virus scanning by using files with an "MZ" magic byte sequence, which is normally associated with executable files. This causes the file to be treated as a safe type, even though it could still be executed as a dangerous file type by applications on the end system. For example, a "triple headed" program containing executable, email, and HTML content can exploit this issue.

Recommendations For McAfee Internet Security Suite version 9.1.08, update the engine to a version that fixes the multiple interpretation error. For McAfee Corporate version 8.0.0 patch 10, apply a patch that addresses the issue with the 4400 engine.