Malware Detection Bypass in Ewido Security Suite for Internet Explorer Users
CVE-2008-5530

Currently unrated

Key Information:

Vendor: Avg
Status: Ewido Security Suite
Vendor: CVE Published:; 12 December 2008

What is CVE-2008-5530?

Ewido Security Suite 4.0 contains a vulnerability that allows malicious actors to bypass malware detection when using Internet Explorer 6 or 7. By modifying an HTML document to include an 'MZ' header at the start and altering the file's extension to .txt or .jpg, attackers can exploit this weakness, effectively evading the suite's defenses. This manipulation poses significant risks, especially as it can facilitate the delivery of payloads that compromise the security of the system.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/47435

vdb-entryx_refsource_XF

http://securityreason.com/securityalert/4723

third-party-advisoryx_refsource_SREASON

http://www.securityfocus.com/archive/1/499043/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Dec 12, 2008
Vulnerability Reserved
Dec 12, 2008

Avg

What is CVE-2008-5530?

References

Timeline