CVE-2008-5544

Name of the Vulnerable Software and Affected Versions Hacksoft The Hacker version 6.3.1.2.174 Hacksoft The Hacker version 6.3.0.9.081

Description The issue allows remote attackers to bypass detection of malware in an HTML document. This is achieved by placing an MZ header at the beginning of the document and modifying the filename to have either no extension, a .txt extension, or a .jpg extension.

Recommendations For Hacksoft The Hacker version 6.3.1.2.174, update the software to detect malware in HTML documents regardless of the file extension. For Hacksoft The Hacker version 6.3.0.9.081, update the software to detect malware in HTML documents regardless of the file extension. As a temporary workaround, consider restricting the use of Internet Explorer 6 or 7 with Hacksoft The Hacker until a patch is available.