CVE-2009-1348

high Trellix
CVSS v3 Base Score
7.6
AV:N/AC:H/Au:N/C:C/I:C/A:C
EPSS Score
0.4%
Exploitation probability in 30 days
Top 39% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
High
Confidentiality
C
Integrity
C
Availability
C
Published: April 30, 2009 (6223 days ago)
Last Modified: April 23, 2026
Vendor: Trellix
Source: NVD

Description

The AV engine before DAT 5600 in McAfee VirusScan, Total Protection, Internet Security, SecurityShield for Microsoft ISA Server, Security for Microsoft Sharepoint, Security for Email Servers, Email Gateway, and Active Virus Defense allows remote attackers to bypass virus detection via (1) an invalid Headflags field in a malformed RAR archive, (2) an invalid Packsize field in a malformed RAR archive, or (3) an invalid Filelength field in a malformed ZIP archive.

CWE

CWE-20

Affected Products

mcafee active virus defensemcafee active virusscanmcafee email gatewaymcafee internet security suitemcafee securityshield for email serversmcafee securityshield for microsoft isa servermcafee securityshield for microsoft sharepointmcafee total protectionmcafee total protection for endpointmcafee virusscan commandline

References

🔗 blog.zoller.lu 🔗 secunia.com 🔗 www.securityfocus.com 🔗 www.securityfocus.com 🔗 kc.mcafee.com