Multiple Vendor Anti-Virus Magic Byte Detection Evasion Vulnerability

Multiple vendor anti-virus software is prone to a detection evasion vulnerability.

The problem presents itself in the way various anti-virus software determines the type of file it is scanning.

An attacker can exploit this vulnerability to pass malicious files passed the anti-virus software. This results in a false sense of security, and ultimately could lead to the execution of arbitrary code on the victim user's machine.


Privacy Statement
Copyright 2010, SecurityFocus