CVE-2006-6408

Name of the Vulnerable Software and Affected Versions Kaspersky Anti-Virus for Linux Mail Servers version 5.5.10

Description The issue allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file. This can be demonstrated using the EICAR test file, which is a standard test file used to check the functionality of antivirus software.

Recommendations For Kaspersky Anti-Virus for Linux Mail Servers version 5.5.10, consider updating the software to a version that includes a fix for this issue, or apply any available patches to prevent the bypass of virus detection. As a temporary workaround, consider enhancing the validation of base64 encoded content in multipart/mixed MIME files to detect and prevent the insertion of invalid characters.