PT-2008-6585 · Quick Heal · Cat-Quickheal
Xhakerman2006
·
Published
2008-12-12
·
Updated
2018-10-11
·
CVE-2008-5524
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
CAT-QuickHeal versions 9.50 through 10.00
Description
The issue allows remote attackers to bypass detection of malware in an HTML document. This can be achieved by placing an MZ header at the beginning of the document and modifying the filename to have no extension, a .txt extension, or a .jpg extension.
Recommendations
For CAT-QuickHeal versions 9.50 through 10.00, update the software to a version that includes improved malware detection capabilities to prevent bypassing of malware detection.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cat-Quickheal