News
Contributed by: EglÄ—
Date: May 26, 2009
The main problem with this specific vulnerability is that attackers and malware are able to exploit it to avoid the virus detection feature. This type of vulnerability allows for the leakage of private information and the ability of the attacker to make changes without any authorization. In addition, a certain services can also be broken up. To be more concrete, with the help of the 'Multiple F-Secure Products RAR ZIP Files Scan Evasion' vulnerability, remote attackers are able to avoid malware detection through the use of a crafted ZIP and RAR archive. Remote users can create a specially crafted ZIP or RAR archive that, while being processed by the targeted user or application, would not b This vulnerability was rated as high. Some of the file components of F-Secure antivirus include but are not limited to the following: fsaw.exe, fsrw.exe, fsdfw.sys, ieshield.dll, fswsclds.exe, fsgk32st.exe, fsguiexe.exe, fsqh.exe, fsdfwd.exe, fsdc.dll, fpshx.dll. It should be mentioned that the vulnerability described in this article is related to the following anti-virus versions as well as their earlier versions; Microsoft Exchange 7.10; Internet Gatekeeper for Windows 6.61, Windows 6.61, Linux 2.16; Internet Security 2009, Anti-Virus 2009 and lastly Client Security 8.0. The vendor has released an advisory and updates to rectify this security issue. Currently, the patch matrix is available in the F-Secure advisory. As in most cases, users are urged to upgrade to the latest version of the software program to keep their systems safe. |
|||||
In addition to the 
e detected by the scanning engine.
Software Downloads
User Comments