Thierry Zoller

**Name of the Vulnerable Software and Affected Versions** ESET Smart Security Premium versions prior to 1294 ESET Internet Security versions prior to 1294 ESET NOD32 Antivirus versions prior to 1294 ESET Cyber Security Pro (macOS) versions prior to 1294 ESET Cyber Security (macOS) versions prior to 1294 ESET Mobile Security for Android versions prior to 1294 ESET Smart TV Security versions prior to 1294 ESET NOD32 Antivirus 4 for Linux Desktop versions prior to 1294 **Description** The issue allows virus-detection bypass via a crafted BZ2 Checksum field in an archive. This is due to a problem in the ESET AV parsing engine. **Recommendations** For ESET Smart Security Premium versions prior to 1294, update to version 1294 or later. For ESET Internet Security versions prior to 1294, update to version 1294 or later. For ESET NOD32 Antivirus versions prior to 1294, update to version 1294 or later. For ESET Cyber Security Pro (macOS) versions prior to 1294, update to version 1294 or later. For ESET Cyber Security (macOS) versions prior to 1294, update to version 1294 or later. For ESET Mobile Security for Android versions prior to 1294, update to version 1294 or later. For ESET Smart TV Security versions prior to 1294, update to version 1294 or later. For ESET NOD32 Antivirus 4 for Linux Desktop versions prior to 1294, update to version 1294 or later.

**Name of the Vulnerable Software and Affected Versions** Avast Antivirus Pro versions prior to 12 definitions 200114-0 Avast Antivirus Pro Plus versions prior to 12 definitions 200114-0 Avast Antivirus for Linux versions prior to 12 definitions 200114-0 **Description** The issue allows virus-detection bypass via a crafted ZIP archive. **Recommendations** For Avast Antivirus Pro versions prior to 12 definitions 200114-0, update to version 12 definitions 200114-0 or later. For Avast Antivirus Pro Plus versions prior to 12 definitions 200114-0, update to version 12 definitions 200114-0 or later. For Avast Antivirus for Linux versions prior to 12 definitions 200114-0, update to version 12 definitions 200114-0 or later.

**Name of the Vulnerable Software and Affected Versions** Quick Heal Total Security versions (affected versions not specified) Quick Heal Home Security versions (affected versions not specified) Quick Heal Total Security Multi-Device versions (affected versions not specified) Quick Heal Internet Security versions (affected versions not specified) Quick Heal Total Security for Mac versions (affected versions not specified) Quick Heal AntiVirus Pro versions (affected versions not specified) Quick Heal AntiVirus for Server versions (affected versions not specified) Quick Heal Total Security for Android versions (affected versions not specified) **Description** The issue allows virus-detection bypass via a crafted GPFLAG in a ZIP archive. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** F-Secure Cloud Protection For Salesforce versions prior to 17.0.605.474 F-Secure Email and Server Security versions prior to 17.0.605.474 F-Secure Internet GateKeeper versions prior to 17.0.605.474 **Description** The issue allows virus-detection bypass via crafted Compression Method data in a GZIP archive. This is achieved by exploiting the F-Secure AV parsing engine. **Recommendations** For F-Secure Cloud Protection For Salesforce versions prior to 17.0.605.474, update to version 17.0.605.474 or later. For F-Secure Email and Server Security versions prior to 17.0.605.474, update to version 17.0.605.474 or later. For F-Secure Internet GateKeeper versions prior to 17.0.605.474, update to version 17.0.605.474 or later.

**Name of the Vulnerable Software and Affected Versions** Avira AV Engine versions prior to 8.3.54.138 Antivirus for Endpoint versions prior to 8.3.54.138 Antivirus for Small Business versions prior to 8.3.54.138 Exchange Security (Gateway) versions prior to 8.3.54.138 Internet Security Suite for Windows versions prior to 8.3.54.138 Prime versions prior to 8.3.54.138 Free Security Suite for Windows versions prior to 8.3.54.138 Cross Platform Anti-malware SDK versions prior to 8.3.54.138 **Description** The issue allows virus-detection bypass via a crafted ISO archive. This affects various Avira products. **Recommendations** For Avira AV Engine version prior to 8.3.54.138, update to version 8.3.54.138 or later. For Antivirus for Endpoint version prior to 8.3.54.138, update to version 8.3.54.138 or later. For Antivirus for Small Business version prior to 8.3.54.138, update to version 8.3.54.138 or later. For Exchange Security (Gateway) version prior to 8.3.54.138, update to version 8.3.54.138 or later. For Internet Security Suite for Windows version prior to 8.3.54.138, update to version 8.3.54.138 or later. For Prime version prior to 8.3.54.138, update to version 8.3.54.138 or later. For Free Security Suite for Windows version prior to 8.3.54.138, update to version 8.3.54.138 or later. For Cross Platform Anti-malware SDK version prior to 8.3.54.138, update to version 8.3.54.138 or later.

**Name of the Vulnerable Software and Affected Versions** ESET Smart Security Premium versions prior to 1294 ESET Internet Security versions prior to 1294 ESET NOD32 Antivirus versions prior to 1294 ESET Cyber Security Pro (macOS) versions prior to 1294 ESET Cyber Security (macOS) versions prior to 1294 ESET Mobile Security for Android versions prior to 1294 ESET Smart TV Security versions prior to 1294 ESET NOD32 Antivirus 4 for Linux Desktop versions prior to 1294 ESET Archive Support Module versions prior to 1296 **Description** The issue allows virus-detection bypass via a crafted Compression Information Field in a ZIP archive. **Recommendations** For ESET Smart Security Premium versions prior to 1294, update to version 1294 or later. For ESET Internet Security versions prior to 1294, update to version 1294 or later. For ESET NOD32 Antivirus versions prior to 1294, update to version 1294 or later. For ESET Cyber Security Pro (macOS) versions prior to 1294, update to version 1294 or later. For ESET Cyber Security (macOS) versions prior to 1294, update to version 1294 or later. For ESET Mobile Security for Android versions prior to 1294, update to version 1294 or later. For ESET Smart TV Security versions prior to 1294, update to version 1294 or later. For ESET NOD32 Antivirus 4 for Linux Desktop versions prior to 1294, update to version 1294 or later. For ESET Archive Support Module versions prior to 1296, update to version 1296 or later.

**Name of the Vulnerable Software and Affected Versions** Wave EMBASSY Remote Administration Server (ERAS) (affected versions not specified) **Description** The issue allows remote authenticated users to execute arbitrary SQL commands via the `ct100$4MainController$TextBoxSearchValue` parameter, which is the search field in the Help Desk application. This can lead to the execution of operating-system commands. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** McAfee ePolicy Orchestrator (ePO) versions prior to 4.5.7 McAfee ePolicy Orchestrator (ePO) versions 4.6.x prior to 4.6.6 **Description** A directory traversal issue allows remote attackers to upload arbitrary files via a crafted request over the Agent-Server communication channel. This can be demonstrated by writing to the Software/ directory. **Recommendations** For versions prior to 4.5.7, update to version 4.5.7 or later. For versions 4.6.x prior to 4.6.6, update to version 4.6.6 or later.

**Name of the Vulnerable Software and Affected Versions** Comodo Internet Security versions prior to 3.9.95478.509 **Description** The issue allows remote attackers to bypass malware detection in an RAR archive by manipulating the archive file format. **Recommendations** For versions prior to 3.9.95478.509, update to version 3.9.95478.509 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** KDE Konqueror (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service due to memory consumption. This is achieved by setting a large integer value for the `length` property of a `Select` object. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Mozilla Firefox versions prior to 2.0.0.19 Mozilla Firefox versions 3.x prior to 3.0.5 SeaMonkey (affected versions not specified) Thunderbird (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in memory consumption and application crash, by providing a large integer value for the `length` property of a `Select` object. **Recommendations** For Mozilla Firefox versions prior to 2.0.0.19, update to version 2.0.0.19 or later. For Mozilla Firefox versions 3.x prior to 3.0.5, update to version 3.0.5 or later. For SeaMonkey, at the moment, there is no information about a newer version that contains a fix for this issue. For Thunderbird, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Explorer versions 5 through 8 **Description** The issue allows remote attackers to cause a denial of service, resulting in memory consumption and application crash, by providing a large integer value for the `length` property of a `Select` object. **Recommendations** For Microsoft Internet Explorer versions 5 through 8, as a temporary workaround, consider restricting the use of the `Select` object until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Nokia N95 version 9.2 Nokia N82 (affected versions not specified) Nokia N810 Internet Tablet (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, specifically memory consumption, by utilizing a large integer value for the `length` property of a `Select` object. **Recommendations** For Nokia N95 version 9.2: Avoid using large integer values for the `length` property of a `Select` object to prevent memory consumption. For Nokia N82: At the moment, there is no information about a newer version that contains a fix for this issue. For Nokia N810 Internet Tablet: At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Aigo P8860 (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in memory consumption and browser hang, by providing a large integer value for the `length` property of a `Select` object. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Opera versions 9.64 and earlier **Description** The issue allows remote attackers to cause a denial of service, specifically memory consumption, by setting a large integer value for the `length` property of a `Select` object. **Recommendations** For Opera versions 9.64 and earlier, consider updating to a newer version to mitigate the risk of denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Sony PLAYSTATION 3 (PS3) (affected versions not specified) **Description** The issue allows remote attackers to cause a denial of service, resulting in memory consumption and console hang, by providing a large integer value for the `length` property of a `Select` object. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netscape versions 6 and 8 **Description** The issue allows remote attackers to cause a denial of service due to memory consumption. This is achieved by setting a large integer value for the `length` property of a `Select` object. **Recommendations** For Netscape versions 6 and 8, consider restricting the use of the `Select` object or limiting the value range for its `length` property to prevent excessive memory consumption. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: WebKit versions before r41741 Apple iPhone OS versions 1.0 through 2.2.1 Apple iPhone OS for iPod touch versions 1.1 through 2.2.1 Safari (affected versions not specified) Description: The issue allows remote attackers to cause a denial of service, resulting in memory consumption or device reset, via a web page containing an HTMLSelectElement object with a large `length` attribute. This is related to the `length` property of a Select object. Recommendations: For WebKit versions before r41741, update to a version after r41741 to resolve the issue. For Apple iPhone OS versions 1.0 through 2.2.1, update to a version after 2.2.1. For Apple iPhone OS for iPod touch versions 1.1 through 2.2.1, update to a version after 2.2.1. For Safari, at the moment, there is no information about a newer version that contains a fix for this issue.

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox version 3.0.4 Description: The issue allows remote attackers to cause a denial of service, resulting in an application hang. This is achieved by providing a large value in the `r` attribute of a circle element in the SVG component, which is related to an unclamped loop. Recommendations: For Mozilla Firefox version 3.0.4, consider avoiding the use of large values in the `r` attribute of circle elements in SVG components until a fix is available. As a temporary workaround, restrict the rendering of SVG circle elements with large `r` attribute values to prevent application hangs.

Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions prior to 3.0.10 Description: The issue allows remote attackers to cause a denial of service, resulting in an infinite loop, application hang, and memory consumption. This can be achieved via a KEYGEN element used in conjunction with either a META element that specifies automatic page refresh or a JavaScript onLoad event handler for a BODY element. Recommendations: For versions prior to 3.0.10, consider disabling the use of KEYGEN elements in conjunction with META elements that specify automatic page refresh or JavaScript onLoad event handlers for BODY elements until a fix is available.