Bypass Vulnerability in AntiVir Antivirus Product by Unknown Vendor
CVE-2005-3224

Currently unrated

Key Information:

Vendor: Avira
Status: Antivir Personal
Vendor: CVE Published:; 14 October 2005

What is CVE-2005-3224?

The vulnerability in unspecified versions of AntiVir Antivirus enables remote attackers to bypass virus detection by exploiting a flaw in how the software processes crafted RAR files. Specifically, malformed central and local headers in these files can trick AntiVir into failing to recognize them as threats. While such RAR files might be flagged as corrupted by other applications like Winzip and BitZipper, they can still be executed in environments using AntiVir, highlighting a significant risk for users relying on this security product.

References

http://shadock.net/secubox/AVCraftedArchive.html

x_refsource_MISC

http://marc.info/?l=bugtraq&m=112879611919750&w=2

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Oct 14, 2005
Vulnerability Reserved
Oct 14, 2005

Avira

What is CVE-2005-3224?

References

Timeline