Multiple AntiVirus products contains a flaw that may allow a remote attacker to bypass antivirus protection. The problem is that these products do not scan filenames that contain extended ASCII characters, which may allow a remote attacker to execute arbitrary code resulting in a loss of integrity.

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

• Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-10/0099.html
  http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0212.html
  http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0213.html
• Vendor URL: http://trustix.com/index.html
  http://www.abacre.com/antivirus/
  http://www.antiy.net/
  http://www.avast.com/
  http://www.bitdefender.com/
  http://www.clamav.net/
  http://www.deerfield.com/products/visnetic-antivirus/plug-in/
  http://www.free-av.com/
  http://www.quickheal.co.in/
• Other Advisory URL: http://www.securiteam.com/windowsntfocus/5TP0M2KGUQ.html

• SecuBox fRoGGz - unsecurewriteme.com -

NVD does not currently have a CVSSv2 score assigned.