Antivirus Protection Bypass in Kaspersky Products
CVE-2004-0934

Currently unrated

Key Information:

Vendor: Eset Software
Status: Nod32 Antivirus; Kaspersky Anti-virus; Sophos Small Business Suite; Sophos Anti-virus
Vendor: CVE Published:; 27 January 2005

🔔 Create Eset Software Vulnerability Alert

What is CVE-2004-0934?

Kaspersky 3.x and 4.x are affected by a vulnerability that allows remote attackers to evade antivirus protection. This is achieved through the use of specially crafted compressed files that have their local and global headers set to zero. This configuration does not prevent the compromised files from being opened, creating a potential security risk for users.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/17761

vdb-entryx_refsource_XF

http://www.kb.cert.org/vuls/id/968818

third-party-advisoryx_refsource_CERT-VN

http://www.securityfocus.com/bid/11448

vdb-entryx_refsource_BID

EPSS Score

39% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 27, 2005
Vulnerability Reserved
Oct 4, 2004

JSON