Interpretation Error in Panda Antivirus Allows Bypass of Virus Detection
CVE-2005-3230

Currently unrated

Key Information:

Vendor: Panda Security
Status: Panda Antivirus
Vendor: CVE Published:; 14 October 2005

🔔 Create Panda Security Vulnerability Alert

What is CVE-2005-3230?

An interpretation error in certain versions of Panda Antivirus allows remote attackers to bypass virus detection mechanisms. This occurs through a specially crafted RAR file containing malformed central and local headers. While Panda Antivirus fails to detect the malicious content, other archive-handling applications like WinRAR and PowerZip can open these files without issue, further exacerbating the risk as users may mistakenly assess the archives as safe. Consequently, this vulnerability poses a significant concern for users relying on effective antivirus solutions to protect against threats embedded in compressed file formats.

References

http://shadock.net/secubox/AVCraftedArchive.html

x_refsource_MISC

http://marc.info/?l=bugtraq&m=112879611919750&w=2

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 14, 2005
Vulnerability Reserved
Oct 14, 2005