CVE-2004-2442

Multiple interpretation error in various F-Secure Anti-Virus products, including Workstation 5.43 and earlier, Windows Servers 5.50 and earlier, MIMEsweeper 5.50 and earlier, Anti-Virus for Linux Servers and Gateways 4.61 and earlier, and other products, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on the target system.

Published: Dec 31, 2004
Updated: Apr 13, 2023
CVE: CVE-2004-2442
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
f-secure / f-secure_anti-virus	5.42	5.42.x
f-secure / f-secure_anti-virus	5.41	5.41.x
f-secure / internet_gatekeeper	6.32	6.32.x
f-secure / internet_gatekeeper	6.3	6.3.x
f-secure / f-secure_anti-virus	5.0	5.0.x
f-secure / f-secure_anti-virus	4.61	4.61.x
f-secure / f-secure_anti-virus	5.5	5.5.x
f-secure / f-secure_personal_express	4.6	4.6.x
f-secure / f-secure_anti-virus	6.30	6.30.x
f-secure / f-secure_anti-virus	4.52	4.52.x
f-secure / f-secure_personal_express	4.7	4.7.x
f-secure / f-secure_for_firewalls	6.20	6.20.x
f-secure / f-secure_anti-virus	4.51	4.51.x
f-secure / f-secure_anti-virus	2005	2005.x
f-secure / f-secure_personal_express	4.5	4.5.x
f-secure / f-secure_anti-virus	5.52	5.52.x
f-secure / f-secure_anti-virus	6.30_sr1	6.30_sr1.x
f-secure / f-secure_anti-virus	2004	2004.x
f-secure / f-secure_internet_security	2005	2005.x
f-secure / internet_gatekeeper	6.41	6.41.x
f-secure / f-secure_anti-virus	5.55	5.55.x
f-secure / f-secure_personal_express	5.0	5.0.x
f-secure / internet_gatekeeper	6.4	6.4.x
f-secure / f-secure_anti-virus	6.31	6.31.x
f-secure / f-secure_anti-virus	6.2	6.2.x
f-secure / f-secure_internet_security	2004	2004.x
f-secure / f-secure_anti-virus	6.21	6.21.x
f-secure / f-secure_anti-virus	6.01	6.01.x
f-secure / f-secure_anti-virus	5.43	5.43.x
f-secure / internet_gatekeeper	2.6	2.6.x
f-secure / internet_gatekeeper	6.31	6.31.x
f-secure / f-secure_anti-virus	4.60	4.60.x

Vulnerability Database

289,697

CVE-2004-2442