Unrated severityNVD Advisory· Published Jan 21, 2006· Updated Apr 16, 2026

CVE-2006-0338

Description

Multiple F-Secure Anti-Virus products and versions for Windows and Linux, including Anti-Virus for Windows Servers 5.52 and earlier, Internet Security 2004, 2005 and 2006, and Anti-Virus for Linux Servers 4.64 and earlier, allow remote attackers to hide arbitrary files and data via malformed (1) RAR and (2) ZIP archives, which are not properly scanned.

Affected products

F-Secure/Anti Virus42 versions
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_gateways:*:*:*:*:*+ 41 more
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_gateways:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_gateways:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_workstations:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.60:*:samba_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.61:*:linux_gateways:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.61:*:linux_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.62:*:samba_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.64:*:linux_gateways:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:4.64:*:linux_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.0:*:linux_client_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.0:*:linux_server_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:client_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:mimesweeper:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:windows_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.11:*:linux_client_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.11:*:linux_server_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:mimesweeper:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:workstations:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:mimesweeper:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:windows_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:workstations:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.43:*:workstations:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.44:*:workstations:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:citrix_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:client_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:mimesweeper:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:windows_servers:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:5.55:*:client_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:6.01:*:client_security:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:6.01:*:ms_exchange:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:6.2:*:firewalls:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:6.2:*:ms_exchange:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:6.21:*:ms_exchange:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:6.30:*:ms_exchange:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:6.30_sr1:*:ms_exchange:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:6.31:*:ms_exchange:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:6.40:*:ms_exchange:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:2003:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:2004:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_anti-virus:2005:*:*:*:*:*:*:*
F-Secure/Internet Security3 versions
cpe:2.3:a:f-secure:f-secure_internet_security:2004:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:f-secure:f-secure_internet_security:2004:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_internet_security:2005:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_internet_security:2006:*:*:*:*:*:*:*
F-Secure/F Secure Personal Express4 versions
cpe:2.3:a:f-secure:f-secure_personal_express:4.5:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:f-secure:f-secure_personal_express:4.5:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_personal_express:4.6:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_personal_express:4.7:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:f-secure_personal_express:5.0:*:*:*:*:*:*:*
F-Secure/Internet Gatekeeper5 versions
cpe:2.3:a:f-secure:internet_gatekeeper:2.06:*:linux:*:*:*:*:*+ 4 more
- cpe:2.3:a:f-secure:internet_gatekeeper:2.06:*:linux:*:*:*:*:*
- cpe:2.3:a:f-secure:internet_gatekeeper:2.14:*:linux:*:*:*:*:*
- cpe:2.3:a:f-secure:internet_gatekeeper:6.32:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:internet_gatekeeper:6.41:*:*:*:*:*:*:*
- cpe:2.3:a:f-secure:internet_gatekeeper:6.42:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/18529nvdPatchVendor Advisory
www.f-secure.com/security/fsc-2006-1.shtmlnvdPatch
www.securityfocus.com/bid/16309nvdPatch
securitytracker.com/idnvd
securitytracker.com/idnvd
securitytracker.com/idnvd
securitytracker.com/idnvd
www.ciac.org/ciac/bulletins/q-103.shtmlnvd
www.osvdb.org/22633nvd
www.vupen.com/english/advisories/2006/0257nvd
exchange.xforce.ibmcloud.com/vulnerabilities/24199nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000