Details of VAR-200412-0514

ID

VAR-200412-0514

CVE

CVE-2004-2220

TITLE

F-Secure Anti-Virus For Microsoft Exchange password protected archive scan bypass vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200412-537

DESCRIPTION

F-Secure Anti-Virus for Microsoft Exchange 6.30 and 6.31 does not properly detect certain password-protected files in a ZIP file, which allows remote attackers to bypass anti-virus protection. It is reported that a specially crafted archive that is nested within another archive is sufficient to trigger this vulnerability. Such an archive may contain malicious applications and will not be detected and quarantined at the email gateway

Trust: 1.26

sources: NVD: CVE-2004-2220 // BID: 11600 // VULHUB: VHN-10648

AFFECTED PRODUCTS

vendor:	f secure	model:	f-secure anti-virus	scope:	eq	version:	6.31	Trust: 1.6
vendor:	f secure	model:	f-secure anti-virus	scope:	eq	version:	6.30	Trust: 1.6
vendor:	f secure	model:	f-secure anti-virus	scope:	eq	version:	6.30_sr1	Trust: 1.6
vendor:	f secure	model:	anti-virus for ms exchange	scope:	eq	version:	6.31	Trust: 0.3
vendor:	f secure	model:	anti-virus for ms exchange service release	scope:	eq	version:	6.301	Trust: 0.3
vendor:	f secure	model:	anti-virus for ms exchange	scope:	eq	version:	6.21	Trust: 0.3
vendor:	f secure	model:	anti-virus for ms exchange	scope:	eq	version:	6.30	Trust: 0.3
vendor:	f secure	model:	anti-virus for ms exchange	scope:	eq	version:	6.2	Trust: 0.3
vendor:	f secure	model:	anti-virus for ms exchange	scope:	eq	version:	6.01	Trust: 0.3
vendor:	f secure	model:	anti-virus	scope:	eq	version:	5.3.0	Trust: 0.3

sources: BID: 11600 // CNNVD: CNNVD-200412-537 // NVD: CVE-2004-2220

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2004-2220
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200412-537
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-10648
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2004-2220
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-10648
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-10648 // CNNVD: CNNVD-200412-537 // NVD: CVE-2004-2220

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-2220

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200412-537

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-200412-537

EXTERNAL IDS

db:	BID	id:	11600	Trust: 2.0
db:	SECUNIA	id:	13067	Trust: 1.7
db:	SECTRACK	id:	1012057	Trust: 1.7
db:	OSVDB	id:	11395	Trust: 1.7
db:	NVD	id:	CVE-2004-2220	Trust: 1.7
db:	CNNVD	id:	CNNVD-200412-537	Trust: 0.7
db:	XF	id:	17944	Trust: 0.6
db:	VULHUB	id:	VHN-10648	Trust: 0.1

sources: VULHUB: VHN-10648 // BID: 11600 // CNNVD: CNNVD-200412-537 // NVD: CVE-2004-2220

REFERENCES

url:	ftp://ftp.f-secure.com/support/hotfix/fsav-mse/fsavmse63x-02_readme.txt	Trust: 2.0
url:	http://www.securityfocus.com/bid/11600	Trust: 1.7
url:	http://www.osvdb.org/11395	Trust: 1.7
url:	http://securitytracker.com/id?1012057	Trust: 1.7
url:	http://secunia.com/advisories/13067	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/17944	Trust: 1.1
url:	http://xforce.iss.net/xforce/xfdb/17944	Trust: 0.6
url:	http://www.f-secure.com/	Trust: 0.3

sources: VULHUB: VHN-10648 // BID: 11600 // CNNVD: CNNVD-200412-537 // NVD: CVE-2004-2220

CREDITS

F-Secure

Trust: 0.6

sources: CNNVD: CNNVD-200412-537

SOURCES

db:	VULHUB	id:	VHN-10648
db:	BID	id:	11600
db:	CNNVD	id:	CNNVD-200412-537
db:	NVD	id:	CVE-2004-2220

LAST UPDATE DATE

2024-08-14T15:09:54.187000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-10648	date:	2017-07-11T00:00:00
db:	BID	id:	11600	date:	2004-11-03T00:00:00
db:	CNNVD	id:	CNNVD-200412-537	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2004-2220	date:	2017-07-11T01:31:43.013

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-10648	date:	2004-12-31T00:00:00
db:	BID	id:	11600	date:	2004-11-03T00:00:00
db:	CNNVD	id:	CNNVD-200412-537	date:	2004-12-31T00:00:00
db:	NVD	id:	CVE-2004-2220	date:	2004-12-31T05:00:00