CVE-2009-1784

Published May 22, 2009

Last updated 5 years ago

Overview

Description: The AVG parsing engine 8.5 323, as used in multiple AVG anti-virus products including Anti-Virus Network Edition, Internet Security Netzwerk Edition, Server Edition für Linux/FreeBSD, Anti-Virus SBS Edition, and others allows remote attackers to bypass malware detection via a crafted (1) RAR and (2) ZIP archive.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-20

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BA92C19-E04F-45FF-A0D1-50D639C6EBF5",
            "versionEndIncluding": "8.0.156"
          },
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:6.0.710:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACBDC1AD-F439-49E0-8068-7BE3C4F44239"
          },
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "279AB9A2-1660-49C9-8AE8-26F7B0B6C51A"
          },
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:7.0.251:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF6D8EA9-E270-4331-995C-D4D378988031"
          },
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:7.0.323:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0C61BD5-365F-4BC6-82E3-68B57B01B8D0"
          },
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:7.1.308:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2862A586-9B51-4F73-A395-79B9B526E2DE"
          },
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:7.1.407:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D90909A9-4032-4604-8FE6-16374BA21BAA"
          },
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:7.5.51:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA3D2B2C-1325-4712-97D3-AC3779B82210"
          },
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:7.5.448:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D8722A8E-1848-44E6-BFC3-C16072976F73"
          },
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:7.5.476:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0EDAD78A-7497-4EF3-8EE5-1C256BE931A5"
          },
          {
            "criteria": "cpe:2.3:a:avg:avg_anti-virus:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B85F998-DACB-46BC-9181-DF8D768D0C62"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References