Sign-up

ID

VAR-200607-0032


CVE

CVE-2006-3489


TITLE

F-Secure Anti-Virus/ Internet Security/Service Platform for Service Providers Special file name evades scanning vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200607-110

DESCRIPTION

F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier allows remote attackers to bypass anti-virus scanning via a crafted filename. Multiple products by F-Secure are prone to scan-evasion vulnerabilities. Exploitation of these vulnerabilities may result in a false sense of security and in the execution of malicious applications. This could potentially lead to a malicious code infection. ---------------------------------------------------------------------- Want to join the Secunia Security Team? Secunia offers a position as a security specialist, where your daily work involves reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerability reports. 1) An unspecified error within the handling of executable programs where the name has been manipulated in a certain way can be exploited to bypass the anti-virus scanning functionality. 2) An error causes files on removable media to not be scanned when the "Scan network devices" option has been disabled. SOLUTION: Apply patches (see patch matrix in the vendor's advisory). PROVIDED AND/OR DISCOVERED BY: Reported by the vendor. ORIGINAL ADVISORY: F-Secure: http://www.f-secure.com/security/fsc-2006-4.shtml ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------

Trust: 1.35

sources: NVD: CVE-2006-3489 // BID: 18693 // VULHUB: VHN-19597 // PACKETSTORM: 47832

AFFECTED PRODUCTS

vendor:f securemodel:f-secure internet securityscope:eqversion:2005

Trust: 1.6

vendor:f securemodel:f-secure anti-virusscope:eqversion:5.52

Trust: 1.6

vendor:f securemodel:f-secure internet securityscope:eqversion:2004

Trust: 1.6

vendor:f securemodel:f-secure internet securityscope:eqversion:2006

Trust: 1.6

vendor:f securemodel:f-secure internet securityscope:eqversion:2003

Trust: 1.6

vendor:f securemodel:f-secure anti-virusscope:eqversion:2005

Trust: 1.0

vendor:f securemodel:f-secure anti-virusscope:lteversion:5.61

Trust: 1.0

vendor:f securemodel:f-secure anti-virusscope:eqversion:2006

Trust: 1.0

vendor:f securemodel:f-secure anti-virusscope:eqversion:2004

Trust: 1.0

vendor:f securemodel:f-secure anti-virusscope:eqversion:5.51

Trust: 1.0

vendor:f securemodel:f-secure anti-virusscope:lteversion:6.01

Trust: 1.0

vendor:f securemodel:f-secure anti-virusscope:eqversion:2003

Trust: 1.0

vendor:f securemodel:f-secure service platform for service providersscope:eqversion:*

Trust: 1.0

vendor:f securemodel:f-secure anti-virusscope:lteversion:5.52

Trust: 1.0

vendor:f securemodel:f-secure anti-virusscope:eqversion:5.5

Trust: 1.0

vendor:f securemodel:f-secure anti-virusscope:lteversion:5.44

Trust: 1.0

vendor:f securemodel:f-secure anti-virusscope:eqversion:5.61

Trust: 0.6

vendor:f securemodel:f-secure anti-virusscope:eqversion:5.44

Trust: 0.6

vendor:f securemodel:f-secure service platform for service providersscope: - version: -

Trust: 0.6

vendor:f securemodel:f-secure anti-virusscope:eqversion:6.01

Trust: 0.6

vendor:f securemodel:service platform for service providersscope:eqversion:6

Trust: 0.3

vendor:f securemodel:personal expressscope:eqversion:5.10

Trust: 0.3

vendor:f securemodel:personal expressscope:eqversion:5.0

Trust: 0.3

vendor:f securemodel:personal expressscope:eqversion:4.7

Trust: 0.3

vendor:f securemodel:personal expressscope:eqversion:4.6

Trust: 0.3

vendor:f securemodel:personal expressscope:eqversion:4.5

Trust: 0.3

vendor:f securemodel:internet securityscope:eqversion:20060

Trust: 0.3

vendor:f securemodel:internet securityscope:eqversion:2005

Trust: 0.3

vendor:f securemodel:internet securityscope:eqversion:2004

Trust: 0.3

vendor:f securemodel:internet securityscope:eqversion:2003

Trust: 0.3

vendor:f securemodel:anti-virus for workstationsscope:eqversion:5.44

Trust: 0.3

vendor:f securemodel:anti-virus for workstationsscope:eqversion:5.43

Trust: 0.3

vendor:f securemodel:anti-virus for workstationsscope:eqversion:5.42

Trust: 0.3

vendor:f securemodel:anti-virus for workstationsscope:eqversion:5.41

Trust: 0.3

vendor:f securemodel:anti-virus for workstationsscope:eqversion:5.40

Trust: 0.3

vendor:f securemodel:anti-virus for windows serversscope:eqversion:5.52

Trust: 0.3

vendor:f securemodel:anti-virus for windows serversscope:eqversion:5.50

Trust: 0.3

vendor:f securemodel:anti-virus for windows serversscope:eqversion:5.42

Trust: 0.3

vendor:f securemodel:anti-virus for windows serversscope:eqversion:5.41

Trust: 0.3

vendor:f securemodel:anti-virus for mimesweeperscope:eqversion:5.61

Trust: 0.3

vendor:f securemodel:anti-virus for mimesweeperscope:eqversion:5.51

Trust: 0.3

vendor:f securemodel:anti-virus for mimesweeperscope:eqversion:5.50

Trust: 0.3

vendor:f securemodel:anti-virus for mimesweeperscope:eqversion:5.42

Trust: 0.3

vendor:f securemodel:anti-virus for mimesweeperscope:eqversion:5.41

Trust: 0.3

vendor:f securemodel:anti-virus for citrix serversscope:eqversion:5.52

Trust: 0.3

vendor:f securemodel:anti-virus for citrix serversscope:eqversion:5.5

Trust: 0.3

vendor:f securemodel:anti-virus client securityscope:eqversion:6.01

Trust: 0.3

vendor:f securemodel:anti-virus client securityscope:eqversion:5.55

Trust: 0.3

vendor:f securemodel:anti-virus client securityscope:eqversion:5.54

Trust: 0.3

vendor:f securemodel:anti-virus client securityscope:eqversion:5.52

Trust: 0.3

vendor:f securemodel:anti-virus client securityscope:eqversion:5.50

Trust: 0.3

vendor:f securemodel:anti-virusscope:eqversion:20060

Trust: 0.3

vendor:f securemodel:anti-virusscope:eqversion:2005

Trust: 0.3

vendor:f securemodel:anti-virusscope:eqversion:2004

Trust: 0.3

vendor:f securemodel:anti-virusscope:eqversion:2003

Trust: 0.3

sources: BID: 18693 // CNNVD: CNNVD-200607-110 // NVD: CVE-2006-3489

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2006-3489
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200607-110
value: MEDIUM

Trust: 0.6

VULHUB: VHN-19597
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2006-3489
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-19597
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-19597 // CNNVD: CNNVD-200607-110 // NVD: CVE-2006-3489

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2006-3489

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200607-110

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-200607-110

EXTERNAL IDS

db:BIDid:18693

Trust: 2.0

db:SECUNIAid:20858

Trust: 1.8

db:NVDid:CVE-2006-3489

Trust: 1.7

db:SECTRACKid:1016400

Trust: 1.7

db:SECTRACKid:1016401

Trust: 1.7

db:OSVDBid:26875

Trust: 1.7

db:VUPENid:ADV-2006-2573

Trust: 1.7

db:CNNVDid:CNNVD-200607-110

Trust: 0.7

db:XFid:27498

Trust: 0.6

db:VULHUBid:VHN-19597

Trust: 0.1

db:PACKETSTORMid:47832

Trust: 0.1

sources: VULHUB: VHN-19597 // BID: 18693 // PACKETSTORM: 47832 // CNNVD: CNNVD-200607-110 // NVD: CVE-2006-3489

REFERENCES

url:http://www.f-secure.com/security/fsc-2006-4.shtml

Trust: 2.1

url:http://www.securityfocus.com/bid/18693

Trust: 1.7

url:http://www.osvdb.org/26875

Trust: 1.7

url:http://securitytracker.com/id?1016400

Trust: 1.7

url:http://securitytracker.com/id?1016401

Trust: 1.7

url:http://secunia.com/advisories/20858

Trust: 1.7

url:http://www.vupen.com/english/advisories/2006/2573

Trust: 1.1

url:https://exchange.xforce.ibmcloud.com/vulnerabilities/27498

Trust: 1.1

url:http://www.frsirt.com/english/advisories/2006/2573

Trust: 0.6

url:http://xforce.iss.net/xforce/xfdb/27498

Trust: 0.6

url:http://secunia.com/product/457/

Trust: 0.1

url:http://secunia.com/product/2718/

Trust: 0.1

url:http://secunia.com/product/455/

Trust: 0.1

url:http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Trust: 0.1

url:http://secunia.com/secunia_security_specialist/

Trust: 0.1

url:http://secunia.com/product/4299/

Trust: 0.1

url:http://secunia.com/product/452/

Trust: 0.1

url:http://secunia.com/product/4300/

Trust: 0.1

url:http://secunia.com/product/6883/

Trust: 0.1

url:http://secunia.com/product/5786/

Trust: 0.1

url:http://secunia.com/advisories/20858/

Trust: 0.1

url:http://secunia.com/about_secunia_advisories/

Trust: 0.1

url:http://secunia.com/product/6885/

Trust: 0.1

url:http://secunia.com/product/5198/

Trust: 0.1

url:http://secunia.com/secunia_security_advisories/

Trust: 0.1

url:http://secunia.com/product/3500/

Trust: 0.1

url:http://secunia.com/product/6882/

Trust: 0.1

url:http://secunia.com/product/3499/

Trust: 0.1

sources: VULHUB: VHN-19597 // BID: 18693 // PACKETSTORM: 47832 // CNNVD: CNNVD-200607-110 // NVD: CVE-2006-3489

CREDITS

F-Secure

Trust: 0.6

sources: CNNVD: CNNVD-200607-110

SOURCES

db:VULHUBid:VHN-19597
db:BIDid:18693
db:PACKETSTORMid:47832
db:CNNVDid:CNNVD-200607-110
db:NVDid:CVE-2006-3489

LAST UPDATE DATE

2024-08-14T14:15:43.182000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-19597date:2017-07-20T00:00:00
db:BIDid:18693date:2006-06-28T19:00:00
db:CNNVDid:CNNVD-200607-110date:2006-08-16T00:00:00
db:NVDid:CVE-2006-3489date:2017-07-20T01:32:20.647

SOURCES RELEASE DATE

db:VULHUBid:VHN-19597date:2006-07-10T00:00:00
db:BIDid:18693date:2006-06-28T00:00:00
db:PACKETSTORMid:47832date:2006-06-29T02:11:18
db:CNNVDid:CNNVD-200607-110date:2006-07-10T00:00:00
db:NVDid:CVE-2006-3489date:2006-07-10T22:05:00