CVE-2008-5538

Name of the Vulnerable Software and Affected Versions Prevx Prevx1 version 2

Description The issue allows remote attackers to bypass detection of malware in an HTML document. This can be achieved by placing an MZ header at the beginning of the document and modifying the filename to have either no extension, a .txt extension, or a .jpg extension.

Recommendations For Prevx Prevx1 version 2, consider updating the software to a version that includes improved malware detection capabilities, specifically for HTML documents with modified filenames and MZ headers. As a temporary workaround, restrict the handling of files with no extension, .txt extension, or .jpg extension in Internet Explorer 6 or 7 to minimize the risk of exploitation.