Lucene search

MitreCVE-2005-3400

HistoryNov 01, 2005 - 12:47 p.m.

CVE-2005-3400

2005-11-0112:47:00

mitre

web.nvd.nist.gov

cve-2005-3400

fortinet

interpretation error

bypass

virus scanning

remote attackers

mz magic byte

exe

eml

html

security vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.9

Confidence

Low

EPSS

0.004

Percentile

74.0%

JSON

Multiple interpretation error in Fortinet 2.48.0.0 allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an “MZ” magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a dangerous file type by applications on the end system, as demonstrated by a “triple headed” program that contains EXE, EML, and HTML content, aka the “magic byte bug.”

Affected configurations

Nvd

Node

fortinetfortinetMatch2.48.0.0

VendorProductVersionCPE
fortinetfortinet2.48.0.0cpe:2.3:h:fortinet:fortinet:2.48.0.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
fortinet	fortinet	2.48.0.0	cpe:2.3:h:fortinet:fortinet:2.48.0.0:::::::*

References

marc.info/?l=bugtraq&m=113026417802703&w=2

marc.info/?l=bugtraq&m=113036131526435&w=2

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.9

Confidence

Low

EPSS

0.004

Percentile

74.0%

JSON

Related for CVE-2005-3400