Published: 27/01/2005 Updated: 09/04/2021

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

McAfee Anti-Virus Engine DATS drivers prior to 4398 released on Oct 13th 2004 and DATS Driver prior to 4397 October 6th 2004 allows remote malicious users to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

Vulnerable Product	Search on Vulmon	Subscribe to Product
archive zip archive zip 1.13
broadcom etrust ez antivirus 6.2
broadcom etrust ez antivirus 6.3
broadcom etrust secure content manager 1.0
ca etrust secure content manager 1.0
kaspersky lab kaspersky anti-virus 4.0
kaspersky lab kaspersky anti-virus 5.0
sophos sophos anti-virus 3.79
sophos sophos anti-virus 3.80
sophos sophos puremessage anti-virus 4.6
sophos sophos small business suite 1.0
broadcom etrust antivirus gateway 7.1
broadcom etrust ez antivirus 6.1
broadcom etrust intrusion detection 1.4.5
broadcom etrust intrusion detection 1.5
eset software nod32 antivirus 1.0.13
kaspersky lab kaspersky anti-virus 3.0
sophos sophos anti-virus 3.78
sophos sophos anti-virus 3.78d
sophos sophos anti-virus 3.85
sophos sophos anti-virus 3.86
broadcom brightstor arcserve backup 11.1
broadcom etrust antivirus 7.0
broadcom etrust ez armor 2.0
broadcom etrust ez armor 2.3
broadcom etrust secure content manager 1.1
broadcom inoculateit 6.0
mcafee antivirus engine 4.3.20
rav antivirus rav antivirus desktop 8.6
rav antivirus rav antivirus for file servers 1.0
sophos sophos anti-virus 3.81
sophos sophos anti-virus 3.82
ca etrust antivirus 7.0_sp2
broadcom etrust antivirus 7.1
broadcom etrust antivirus gateway 7.0
broadcom etrust ez armor 2.4
broadcom etrust intrusion detection 1.4.1.13
eset software nod32 antivirus 1.0.11
eset software nod32 antivirus 1.0.12
rav antivirus rav antivirus for mail servers 8.4.2
sophos sophos anti-virus 3.4.6
sophos sophos anti-virus 3.83
sophos sophos anti-virus 3.84
mandrakesoft mandrake linux 10.1
suse suse linux 9.2
gentoo linux
gentoo linux 1.4

/* zipbrkc - Proof-of-Concept for CAN-2004-0932 - CAN-2004-0937 Copyright (C) 2004 oc192 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version This program is d ...

Zip file format fuzzer and multi-tool.

zipbrk 211 Zip break is a tool to disect, modify, and reassemble zip files for a variety of tasks It is designed to be cross-platform and as simple as possible to port between varied systems It has been tested on Windows 9x/2k/XP, Windows Vista/7/8, Fedora 23/24/25/26/27, Kali, Debian 8/9, Qubes 32/40, Whonix 13/14, Ubuntu 10, FreeBSD 11, and various Android phones To co

NVD-CWE-Other http://www.securityfocus.com/bid/11448 http://www.idefense.com/application/poi/display?id=153&type=vulnerabilities&flashstatus=true https://exchange.xforce.ibmcloud.com/vulnerabilities/17761 https://nvd.nist.gov https://github.com/kvesel/zipbrk https://www.exploit-db.com/exploits/629/

CVE-2004-0932

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect