cpe:/a:avg:antivirus:8.0.0.161 CVE-2008-5522 2008-12-12T13:30:02.703-05:00 2017-08-07T21:33:21.563-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2008-12-15T10:30:00.000-05:00 ALLOWS_ADMIN_ACCESS BUGTRAQ 20081208 Multiple Vendor Anti-Virus Software Malicious WebPage Detection Bypass BUGTRAQ 20081209 Multiple Vendor Anti-Virus Software Malicious WebPage Detection Bypass -Update- SREASON 4723 XF multiple-antivirus-mzheader-code-execution(47435) AVG Anti-Virus 8.0.0.161, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing a CVE-2006-5745 exploit.