Vulnerability Details CVE-2005-3217
Multiple interpretation error in unspecified versions of Symantec Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.2%
CVSS Severity
CVSS v2 Score 5.1
References
Products affected by CVE-2005-3217
-
cpe:2.3:a:symantec:antivirus_scan_engine:-
-
cpe:2.3:a:symantec:antivirus_scan_engine:4.0
-
cpe:2.3:a:symantec:antivirus_scan_engine:4.1
-
cpe:2.3:a:symantec:antivirus_scan_engine:4.1.8
-
cpe:2.3:a:symantec:antivirus_scan_engine:4.1.9
-
cpe:2.3:a:symantec:antivirus_scan_engine:4.3
-
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.12
-
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.3
-
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.7.27
-
cpe:2.3:a:symantec:antivirus_scan_engine:4.3.8.29
-
cpe:2.3:a:symantec:antivirus_scan_engine:5.0
-
cpe:2.3:a:symantec:antivirus_scan_engine:5.0.0.24
-
cpe:2.3:a:symantec:antivirus_scan_engine:5.0.1