Bypassing Antivirus Protection via Archive::Zip Perl Module

Bypassing Antivirus Protection via Archive::Zip Perl Module

CVE-2004-1096 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

Learn more about our Web Application Penetration Testing UK.