CVE-2005-3374

Name of the Vulnerable Software and Affected Versions F-Prot version 3.16c

Description The issue allows remote attackers to bypass virus scanning by using files with an "MZ" magic byte sequence, which is normally associated with EXE files, but can be used in other file types such as BAT, HTML, and EML. This causes the file to be treated as a safe type, even though it could still be executed as a dangerous file type by applications on the end system.

Recommendations For F-Prot version 3.16c, update to a newer version that addresses the multiple interpretation error to prevent bypassing of virus scanning.