CVE-2004-2220 Information

Description

F-Secure Anti-Virus for Microsoft Exchange 6.30 and 6.31 does not properly detect certain password-protected files in a ZIP file which allows remote attackers to bypass anti-virus protection.

Reference

ftp://ftp.f-secure.com/support/hotfix/fsav-mse/fsavmse63x-02_readme.txt http://secunia.com/advisories/13067 http://securitytracker.com/id?1012057 http://www.osvdb.org/11395 http://www.securityfocus.com/bid/11600 https://exchange.xforce.ibmcloud.com/vulnerabilities/17944