Details of VAR-200501-0243

ID

VAR-200501-0243

CVE

CVE-2004-1096

TITLE

Archive::Zip may not properly parse the file sizes of Zip archives

Trust: 0.8

sources: CERT/CC: VU#492545

DESCRIPTION

Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system. Archive::Zip does not properly parse Zip files and may incorrectly interpret malformed zip archives to contain zero length/size files. As a a result, anti-virus software using Archive::Zip may fail to detect malicious content within a Zip archive. Archive::Zip is a free perl module for working with zip compressed files. Archive::Zip versions prior to 1.14 have security bypass vulnerabilities when used in antivirus programs

Trust: 1.71

sources: NVD: CVE-2004-1096 // CERT/CC: VU#492545 // VULHUB: VHN-9526

AFFECTED PRODUCTS

vendor:	suse	model:	linux	scope:	eq	version:	9.2	Trust: 1.6
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.85	Trust: 1.0
vendor:	broadcom	model:	etrust antivirus gateway	scope:	eq	version:	7.1	Trust: 1.0
vendor:	rav antivirus	model:	desktop	scope:	eq	version:	8.6	Trust: 1.0
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.78d	Trust: 1.0
vendor:	broadcom	model:	etrust antivirus	scope:	eq	version:	7.1	Trust: 1.0
vendor:	broadcom	model:	etrust ez armor	scope:	eq	version:	2.3	Trust: 1.0
vendor:	kaspersky lab	model:	anti-virus	scope:	eq	version:	5.0	Trust: 1.0
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.83	Trust: 1.0
vendor:	rav antivirus	model:	for file servers	scope:	eq	version:	1.0	Trust: 1.0
vendor:	sophos	model:	puremessage anti-virus	scope:	eq	version:	4.6	Trust: 1.0
vendor:	kaspersky lab	model:	anti-virus	scope:	eq	version:	3.0	Trust: 1.0
vendor:	eset	model:	nod32 antivirus	scope:	eq	version:	1.0.12	Trust: 1.0
vendor:	broadcom	model:	etrust secure content manager	scope:	eq	version:	1.1	Trust: 1.0
vendor:	kaspersky lab	model:	anti-virus	scope:	eq	version:	4.0	Trust: 1.0
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.81	Trust: 1.0
vendor:	mandrakesoft	model:	mandrake linux	scope:	eq	version:	10.1	Trust: 1.0
vendor:	eset	model:	nod32 antivirus	scope:	eq	version:	1.0.13	Trust: 1.0
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.84	Trust: 1.0
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.79	Trust: 1.0
vendor:	broadcom	model:	etrust ez antivirus	scope:	eq	version:	6.2	Trust: 1.0
vendor:	broadcom	model:	etrust antivirus gateway	scope:	eq	version:	7.0	Trust: 1.0
vendor:	rav antivirus	model:	for mail servers	scope:	eq	version:	8.4.2	Trust: 1.0
vendor:	broadcom	model:	etrust intrusion detection	scope:	eq	version:	1.4.1.13	Trust: 1.0
vendor:	broadcom	model:	etrust antivirus	scope:	eq	version:	7.0	Trust: 1.0
vendor:	broadcom	model:	etrust secure content manager	scope:	eq	version:	1.0	Trust: 1.0
vendor:	gentoo	model:	linux	scope:	eq	version:	*	Trust: 1.0
vendor:	gentoo	model:	linux	scope:	eq	version:	1.4	Trust: 1.0
vendor:	broadcom	model:	etrust intrusion detection	scope:	eq	version:	1.5	Trust: 1.0
vendor:	broadcom	model:	etrust ez armor	scope:	eq	version:	2.4	Trust: 1.0
vendor:	eset	model:	nod32 antivirus	scope:	eq	version:	1.0.11	Trust: 1.0
vendor:	broadcom	model:	etrust ez antivirus	scope:	eq	version:	6.1	Trust: 1.0
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.86	Trust: 1.0
vendor:	broadcom	model:	brightstor arcserve backup	scope:	eq	version:	11.1	Trust: 1.0
vendor:	sophos	model:	small business suite	scope:	eq	version:	1.0	Trust: 1.0
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.80	Trust: 1.0
vendor:	broadcom	model:	inoculateit	scope:	eq	version:	6.0	Trust: 1.0
vendor:	broadcom	model:	etrust intrusion detection	scope:	eq	version:	1.4.5	Trust: 1.0
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.78	Trust: 1.0
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.4.6	Trust: 1.0
vendor:	broadcom	model:	etrust ez antivirus	scope:	eq	version:	6.3	Trust: 1.0
vendor:	broadcom	model:	etrust ez armor	scope:	eq	version:	2.0	Trust: 1.0
vendor:	ca	model:	etrust antivirus	scope:	eq	version:	7.0_sp2	Trust: 1.0
vendor:	ca	model:	etrust secure content manager	scope:	eq	version:	1.0	Trust: 1.0
vendor:	sophos	model:	anti-virus	scope:	eq	version:	3.82	Trust: 1.0
vendor:	mcafee	model:	antivirus engine	scope:	eq	version:	4.3.20	Trust: 1.0
vendor:	cpan	model:	-	scope:	-	version:	-	Trust: 0.8

sources: CERT/CC: VU#492545 // CNNVD: CNNVD-200501-061 // NVD: CVE-2004-1096

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2004-1096
value:	HIGH
Trust: 1.0
CARNEGIE MELLON:	VU#492545
value:	3.59
Trust: 0.8
CNNVD:	CNNVD-200501-061
value:	HIGH
Trust: 0.6
VULHUB:	VHN-9526
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2004-1096
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-9526
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#492545 // VULHUB: VHN-9526 // CNNVD: CNNVD-200501-061 // NVD: CVE-2004-1096

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-1096

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200501-061

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-200501-061

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-9526

PATCH

title:

Archive::Zip AntiVirus Security vulnerabilities

url:

http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=146865

Trust: 0.6

sources: CNNVD: CNNVD-200501-061

EXTERNAL IDS

db:	CERT/CC	id:	VU#492545	Trust: 2.5
db:	SECUNIA	id:	13038	Trust: 1.7
db:	BID	id:	11448	Trust: 1.7
db:	NVD	id:	CVE-2004-1096	Trust: 1.7
db:	CNNVD	id:	CNNVD-200501-061	Trust: 0.7
db:	EXPLOIT-DB	id:	629	Trust: 0.1
db:	VULHUB	id:	VHN-9526	Trust: 0.1

sources: CERT/CC: VU#492545 // VULHUB: VHN-9526 // CNNVD: CNNVD-200501-061 // NVD: CVE-2004-1096

REFERENCES

url:	http://www.securityfocus.com/bid/11448	Trust: 1.7
url:	http://www.kb.cert.org/vuls/id/492545	Trust: 1.7
url:	http://www.gentoo.org/security/en/glsa/glsa-200410-31.xml	Trust: 1.7
url:	http://www.mandriva.com/security/advisories?name=mdksa-2004:118	Trust: 1.7
url:	http://secunia.com/advisories/13038/	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/17761	Trust: 1.7
url:	http://www.idefense.com/application/poi/display?id=153&type=vulnerabilities&flashstatus=true	Trust: 1.6
url:	http://www.linuxsecurity.com/advisories/gentoo_advisory-5043.html	Trust: 0.8
url:	http://rt.cpan.org/noauth/bug.html?id=8077	Trust: 0.8
url:	http://www.idefense.com/application/poi/display?id=153	Trust: 0.8
url:	http://www.idefense.com/application/poi/display?id=153&type=vulnerabilities&flashstatus=true	Trust: 0.1

sources: CERT/CC: VU#492545 // VULHUB: VHN-9526 // CNNVD: CNNVD-200501-061 // NVD: CVE-2004-1096

SOURCES

db:	CERT/CC	id:	VU#492545
db:	VULHUB	id:	VHN-9526
db:	CNNVD	id:	CNNVD-200501-061
db:	NVD	id:	CVE-2004-1096

LAST UPDATE DATE

2024-08-14T13:51:14.357000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#492545	date:	2004-11-15T00:00:00
db:	VULHUB	id:	VHN-9526	date:	2017-07-11T00:00:00
db:	CNNVD	id:	CNNVD-200501-061	date:	2021-04-08T00:00:00
db:	NVD	id:	CVE-2004-1096	date:	2021-04-09T17:00:09.303

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#492545	date:	2004-11-12T00:00:00
db:	VULHUB	id:	VHN-9526	date:	2005-01-10T00:00:00
db:	CNNVD	id:	CNNVD-200501-061	date:	2005-01-10T00:00:00
db:	NVD	id:	CVE-2004-1096	date:	2005-01-10T05:00:00