PT-2005-4049 · Bitzipper+5 · Bitzipper+5

Froggz

Published

2005-10-14

Updated

2016-10-18

CVE-2005-3235

CVSS v2.0

5.1

Medium

Vector

AV:N/AC:H/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Proland Protector Plus 2000 Antivirus (affected versions not specified)

Description A multiple interpretation error in Proland Protector Plus 2000 Antivirus allows remote attackers to bypass virus detection. This can be achieved by embedding a malicious executable in a specially crafted RAR file with malformed central and local headers. Although the RAR file may be rejected as corrupted by certain products like Winzip and BitZipper, it can still be opened by other products such as Winrar and PowerZip.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-3235

Affected Products

Bitzipper

Powerzip

Proland Protector Plus 2000 Antivirus

Rar

Winrar

Winzip

PT-2005-4049 · Bitzipper+5 · Bitzipper+5

CVE-2005-3235

Related Identifiers

Affected Products

References · 3