[原文]Buffer overflow in multiple F-Secure Anti-Virus products, including F-Secure Anti-Virus 5.42 and earlier, allows remote attackers to bypass scanning or cause a denial of service (crash or module restart), depending on the product, via a malformed LHA archive.
A remote overflow exists in F-Secure Anti-Virus products. The modules responsible for accessing content in LHA archives while scanning for
viruses fails to perform proper boundry checking. With a specially crafted LHA archive, an attacker can cause an overflow resulting in a loss of availability.
Upgrade your affected product to the version listed in the vendors patch matrix, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): Disable On-access scanning of client or server computers. This feature is not enabled by default.