Published: 22/02/2020 Updated: 21/07/2021

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Subscribe to Cloud Protection For Salesforce

The F-Secure AV parsing engine prior to 2020-02-05 allows virus-detection bypass via crafted Compression Method data in a GZIP archive. This affects versions prior to 17.0.605.474 (on Linux) of Cloud Protection For Salesforce, Email and Server Security, and Internet GateKeeper.

Vulnerable Product	Search on Vulmon	Subscribe to Product
f-secure cloud protection for salesforce
f-secure email and server security
f-secure internet gatekeeper

Full Disclosure mailing list archives   By Date By Thread </form>    [TZO-16-2020] - F-SECURE Generic Malformed Container bypass (GZIP)  <!--X-Head-of-Message-- ...

CWE-436 https://blog.zoller.lu/p/tzo-16-2020-f-secure-generic-malformed.html https://seclists.org/bugtraq/2020/Feb/33 http://packetstormsecurity.com/files/156506/F-SECURE-Generic-Malformed-Container-Bypass.html http://seclists.org/fulldisclosure/2020/Feb/33 https://nvd.nist.gov http://seclists.org/fulldisclosure/2020/Feb/33

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-9342

Vulnerability Summary

Vulnerability Trend

Mailing Lists

References

Vulmon Search

About

Products

Connect