CVE-2006-3489
First published: Mon Jul 10 2006(Updated: )
F-Secure Anti-Virus 2003 through 2006 and other versions, Internet Security 2003 through 2006, and Service Platform for Service Providers 6.x and earlier allows remote attackers to bypass anti-virus scanning via a crafted filename.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| F-Secure Anti-Virus | <=5.44 | |
| F-Secure Anti-Virus | <=5.52 | |
| F-Secure Anti-Virus | <=5.61 | |
| F-Secure Anti-Virus | <=6.01 | |
| F-Secure Anti-Virus | =5.5 | |
| F-Secure Anti-Virus | =5.51 | |
| F-Secure Anti-Virus | =5.52 | |
| F-Secure Anti-Virus | =2003 | |
| F-Secure Anti-Virus | =2004 | |
| F-Secure Anti-Virus | =2005 | |
| F-Secure Anti-Virus | =2006 | |
| F-Secure Internet Security 2010 | =2003 | |
| F-Secure Internet Security 2010 | =2004 | |
| F-Secure Internet Security 2010 | =2005 | |
| F-Secure Internet Security 2010 | =2006 | |
| F-Secure Service Platform for Service Providers |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.f-secure.com/security/fsc-2006-4.shtml
- http://securitytracker.com/id?1016400
- http://securitytracker.com/id?1016401
- http://www.osvdb.org/26875
- http://www.securityfocus.com/bid/18693
- http://secunia.com/advisories/20858
- http://www.vupen.com/english/advisories/2006/2573
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27498
Frequently Asked Questions
What is the severity of CVE-2006-3489?
CVE-2006-3489 has a moderate severity rating as it allows attackers to bypass anti-virus scanning.
How do I fix CVE-2006-3489?
To fix CVE-2006-3489, update to a supported version of F-Secure Anti-Virus or Internet Security that addresses this vulnerability.
Which F-Secure versions are affected by CVE-2006-3489?
CVE-2006-3489 affects F-Secure Anti-Virus versions 2003 through 2006, Internet Security versions 2003 through 2006, and Service Platform for Service Providers versions 6.x and earlier.
Can CVE-2006-3489 be exploited remotely?
Yes, CVE-2006-3489 can be exploited remotely by attackers using crafted filenames to bypass scanning.
What types of F-Secure products does CVE-2006-3489 impact?
CVE-2006-3489 impacts F-Secure Anti-Virus, F-Secure Internet Security, and F-Secure Service Platform products.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/severity
- agent/last-modified-date
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/f-secure
- canonical/f-secure anti-virus
- version/f-secure anti-virus/5.44
- version/f-secure anti-virus/5.52
- version/f-secure anti-virus/5.61
- version/f-secure anti-virus/6.01
- version/f-secure anti-virus/5.5
- version/f-secure anti-virus/5.51
- version/f-secure anti-virus/2003
- version/f-secure anti-virus/2004
- version/f-secure anti-virus/2005
- version/f-secure anti-virus/2006
- canonical/f-secure internet security 2010
- version/f-secure internet security 2010/2003
- version/f-secure internet security 2010/2004
- version/f-secure internet security 2010/2005
- version/f-secure internet security 2010/2006
- canonical/f-secure service platform for service providers