CVE-2006-6960

2007-01-2916:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.013 Low

EPSS

Percentile

85.7%

JSON

The Compression Sweep feature in WebRoot Spy Sweeper 4.5.9 and earlier does not handle non-ZIP archives, which allows remote attackers to bypass the malware detection via files with (1) RAR, (2) GZ, (3) TAR, (4) CAB, or (5) ACE compression.

References

www.osvdb.org/27536

www.securityfocus.com/archive/1/437814/100/200/threaded

www.sentinel.gr/advisories/SGA-0001.txt

exchange.xforce.ibmcloud.com/vulnerabilities/27266