Multiple AVG Products RAR/ZIP Files Scan Evasion Vulnerability

Multiple AVG products are prone to a vulnerability that may allow certain compressed archives to bypass the scan engine.

Successful exploits will allow attackers to distribute files containing malicious code that the antivirus application will fail to detect.

The following products are affected:

AVG Anti-Virus Network Edition (prior to engine build 8.5 323)
AVG Internet Security Netzwerk Edition (prior to engine build 8.5 323)
AVG Server Edition für Linux/FreeBSD (prior to engine build 8.5 323)
AVG eMail Server Edition (prior to engine build 8.5 323)
AVG File Server Edition (prior to engine build 8.5 323)
AVG Internet Security SBS Edition (prior to engine build 8.5 323)
AVG Anti-Virus SBS Edition (prior to engine build 8.5 323)
AVG Anti-Virus plus Firewall (prior to engine build 8.5 323)
AVG Anti-Virus (prior to engine build 8.5 323)


 

Privacy Statement
Copyright 2010, SecurityFocus