CVE-2004-0933

Name of the Vulnerable Software and Affected Versions: Computer Associates (CA) InoculateIT version 6.0 eTrust Antivirus versions r6.0 through r7.1 eTrust Antivirus for the Gateway versions r7.0 and r7.1 eTrust Secure Content Manager (affected versions not specified) eTrust Intrusion Detection (affected versions not specified) EZ-Armor versions 2.0 through 2.4 EZ-Antivirus versions 6.1 through 6.3

Description: The issue allows remote attackers to bypass antivirus protection by using a compressed file with both local and global headers set to zero. This does not prevent the compressed file from being opened on a target system.

Recommendations: For Computer Associates (CA) InoculateIT version 6.0, update to a version that fixes this issue. For eTrust Antivirus versions r6.0 through r7.1, update to a version that fixes this issue. For eTrust Antivirus for the Gateway versions r7.0 and r7.1, update to a version that fixes this issue. For eTrust Secure Content Manager, eTrust Intrusion Detection, update to a version that fixes this issue, if available. For EZ-Armor versions 2.0 through 2.4, update to a version that fixes this issue. For EZ-Antivirus versions 6.1 through 6.3, update to a version that fixes this issue. As a temporary workaround, consider restricting the opening of compressed files with modified headers until a patch is available.