1 results (0.001 seconds)
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2008-5521
https://notcve.org/view.php?id=CVE-2008-5521
12 Dec 2008 — Avira AntiVir 7.9.0.36 and possibly 7.8.1.28, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing a CVE-2006-5745 exploit. Avira AntiVir v7.9.0.36 y posiblemente v7.8.1.28, cuando se utiliza Internet Explorer 6 o 7, permite a atacantes remotos eludir... • http://securityreason.com/securityalert/4723 • CWE-20: Improper Input Validation •