CVSS: 5.1EPSS: 1%CPEs: 1EXPL: 0CVE-2005-3372
https://notcve.org/view.php?id=CVE-2005-3372
Multiple interpretation error in eTrust CA 7.0.1.4 with the 11.9.1 engine allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a dangerous file type by applications on the end system, as demonstrated by a "triple headed" program that contains EXE, EML, and HTML content, aka the "magic byte bug." • http://marc.info/?l=bugtraq&m=113026417802703&w=2 http://www.securityelf.org/magicbyte.html http://www.securityelf.org/magicbyteadv.html http://www.securityelf.org/updmagic.html http://www.securityfocus.com/bid/15189 •
CVSS: 5.1EPSS: 0%CPEs: 2EXPL: 0CVE-2005-3225
https://notcve.org/view.php?id=CVE-2005-3225
Multiple interpretation error in unspecified versions of (1) eTrust-Iris and (2) eTrust-Vet Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper. • http://marc.info/?l=bugtraq&m=112879611919750&w=2 http://shadock.net/secubox/AVCraftedArchive.html •
CVSS: 10.0EPSS: 1%CPEs: 28EXPL: 0CVE-2005-1693
https://notcve.org/view.php?id=CVE-2005-1693
Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6.0, eTrust Antivirus r6.0 through 7.1, eTrust Antivirus for the Gateway r7.0 and r7.1, eTrust Secure Content Manager, eTrust Intrusion Detection, BrightStor ARCserve Backup (BAB) r11.1, Vet Antivirus, Zonelabs ZoneAlarm Security Suite, and ZoneAlarm Antivirus, allows remote attackers to gain privileges via a compressed VBA directory with a project name length of -1, which leads to a heap-based buffer overflow. • http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&openparameter=1588 http://marc.info/?l=bugtraq&m=111686576416450&w=2 http://secunia.com/advisories/15470 http://secunia.com/advisories/15479 http://securitytracker.com/id?1014050 http://www.rem0te.com/public/images/vet.pdf http://www.securityfocus.com/bid/13710 http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=32896 •
CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0CVE-2004-2305
https://notcve.org/view.php?id=CVE-2004-2305
Computer Associates eTrust Antivirus EE 6.0 through 7.0 allows remote attackers to bypass virus scanning by including a password-protected file in a ZIP file, which causes eTrust to scan only the password protected file and skip the other files. • http://www.securityfocus.com/bid/9665 http://www.securitytracker.com/alerts/2004/Feb/1009074.html https://exchange.xforce.ibmcloud.com/vulnerabilities/15230 •
CVSS: 7.2EPSS: 0%CPEs: 10EXPL: 0CVE-2004-1149
https://notcve.org/view.php?id=CVE-2004-1149
Computer Associates eTrust EZ Antivirus 7.0.0 to 7.0.4, including 7.0.1.4, installs its files with insecure permissions (ACLs), which allows local users to gain privileges by replacing critical programs with malicious ones, as demonstrated using VetMsg.exe. • http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&openparameter http://www.idefense.com/application/poi/display?id=164 https://exchange.xforce.ibmcloud.com/vulnerabilities/18502 •