CVE-2009-1783
Severity Score
10.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple FRISK Software F-Prot anti-virus products, including Antivirus for Exchange, Linux on IBM zSeries, Linux x86 File Servers, Linux x86 Mail Servers, Linux x86 Workstations, Solaris Mail Servers, Antivirus for Windows, and others, allow remote attackers to bypass malware detection via a crafted CAB archive.
Múltiples productos antivirus FRISK Software F-Prot, incluidos: Antivirus for Exchange, Linux on IBM zSeries, Linux x86 File Servers, Linux x86 Mail Servers, Linux x86 Workstations, Solaris Mail Servers, Antivirus for Windows y otros, permiten a atacantes remotos saltar la detección de software malicioso mediante un fichero .CAB manipulado.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-05-22 CVE Reserved
- 2009-05-22 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| http://blog.zoller.lu/2009/04/advisory-f-prot-frisk-cab-bypass.html | X_refsource_misc | |
| http://www.securityfocus.com/archive/1/503393/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/34896 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/50427 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| F-prot Search vendor "F-prot" | F-prot Antivirus Search vendor "F-prot" for product "F-prot Antivirus" | * | exchange |
Affected
| ||||||
| F-prot Search vendor "F-prot" | F-prot Antivirus Search vendor "F-prot" for product "F-prot Antivirus" | * | linux_on_ibm_zseries |
Affected
| ||||||
| F-prot Search vendor "F-prot" | F-prot Antivirus Search vendor "F-prot" for product "F-prot Antivirus" | * | linux_x86_file_servers |
Affected
| ||||||
| F-prot Search vendor "F-prot" | F-prot Antivirus Search vendor "F-prot" for product "F-prot Antivirus" | * | linux_x86_mail_servers |
Affected
| ||||||
| F-prot Search vendor "F-prot" | F-prot Antivirus Search vendor "F-prot" for product "F-prot Antivirus" | * | linux_x86_workstations |
Affected
| ||||||
| F-prot Search vendor "F-prot" | F-prot Antivirus Search vendor "F-prot" for product "F-prot Antivirus" | * | solaris_mail_servers |
Affected
| ||||||
| F-prot Search vendor "F-prot" | F-prot Antivirus Search vendor "F-prot" for product "F-prot Antivirus" | * | windows |
Affected
| ||||||
| F-prot Search vendor "F-prot" | F-prot Antivirus Search vendor "F-prot" for product "F-prot Antivirus" | * | windows_mail_servers |
Affected
| ||||||
| F-prot Search vendor "F-prot" | F-prot Aves Search vendor "F-prot" for product "F-prot Aves" | * | - |
Affected
| ||||||
| F-prot Search vendor "F-prot" | F-prot Milter Search vendor "F-prot" for product "F-prot Milter" | * | - |
Affected
| ||||||