PT-2008-6590 · Ca · Ca Etrust Vet Antivirus

Published

2008-12-12

Updated

2021-04-09

CVE-2008-5529

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions CA eTrust Antivirus version 31.6.6086

Description The issue allows remote attackers to bypass malware detection in HTML documents by modifying the file to include an MZ header at the beginning and altering the filename extension to have no extension, a .txt extension, or a .jpg extension.

Recommendations For CA eTrust Antivirus version 31.6.6086, consider updating the antivirus signatures to improve malware detection capabilities, and be cautious when opening files with modified extensions from untrusted sources.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2008-5529

Affected Products

Ca Etrust Vet Antivirus

PT-2008-6590 · Ca · Ca Etrust Vet Antivirus

CVE-2008-5529

Weakness Enumeration

Related Identifiers

Affected Products

References · 6