CVE-2005-3231
First published: Fri Oct 14 2005(Updated: )
Multiple interpretation error in unspecified versions of CAT Quick Heal allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| QuickHeal CAT QuickHeal |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-3231?
CVE-2005-3231 is considered a high severity vulnerability due to its potential for remote exploitation.
How do I fix CVE-2005-3231?
To fix CVE-2005-3231, ensure that you update to the latest version of CAT Quick Heal that addresses this vulnerability.
What type of attack is facilitated by CVE-2005-3231?
CVE-2005-3231 facilitates remote attacks that allow the bypassing of virus detection mechanisms.
What are the affected versions in CVE-2005-3231?
Multiple unspecified versions of CAT Quick Heal are affected by CVE-2005-3231.
Can files still be opened despite CVE-2005-3231?
Yes, files with malicious RAR content can still be opened by other decompression software, which exacerbates the risk associated with CVE-2005-3231.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/cat
- canonical/quickheal cat quickheal