CyberSec.Space Logo
Back to CVE Browser

CVE-2006-6409

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1350%
EPSS Percentile10.97th
PublishedDec 10, 2006
Last ModifiedApr 23, 2026

Vulnerability Description

F-Secure Anti-Virus for Linux Gateways 4.65 allows remote attackers to cause a denial of service (possibly fatal scan error), and possibly bypass virus detection, by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file.

Affected Platforms (CPE)

πŸ“¦
F Secure

F Secure Anti Virus

= 4.65

References & Advisories

πŸ”— http://www.quantenblog.net/security/virus-scanner-bypass
πŸ”— http://www.securityfocus.com/archive/1/453654/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/21461
πŸ”— http://www.quantenblog.net/security/virus-scanner-bypass
πŸ”— http://www.securityfocus.com/archive/1/453654/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/21461

Related Vulnerabilities

CVE-2007-296710.0

Multiple F-Secure anti-virus products for Microsoft Windows and Linux before 20070522 allow remote attackers to cause a denial of ...

CVE-2007-111210.0

Kaspersky Anti-Virus 6.0 and Internet Security 6.0 exposes unsafe methods in the (a) AXKLPROD60Lib.KAV60Info (AxKLProd60.dll) and ...

CVE-2007-044510.0

Heap-based buffer overflow in the arj.ppl module in the OnDemand Scanner in Kaspersky Anti-Virus, Anti-Virus for Workstations, and...

CVE-2009-004210.0

Multiple unspecified vulnerabilities in the Arclib library (arclib.dll) before 7.3.0.15 in the CA Anti-Virus engine for CA Anti-Vi...