CVE-2006-6960 Information

Description

The Compression Sweep feature in WebRoot Spy Sweeper 4.5.9 and earlier does not handle non-ZIP archives which allows remote attackers to bypass the malware detection via files with (1) RAR (2) GZ (3) TAR (4) CAB or (5) ACE compression.

Reference

http://www.osvdb.org/27536 http://www.securityfocus.com/archive/1/437814/100/200/threaded http://www.sentinel.gr/advisories/SGA-0001.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/27266