CVE-2004-1096
CVE-2004-1096 is a high-severity vulnerability in Broadcom Brightstor Arcserve Backup with a CVSS 2.0 base score of 7.5. Its EPSS exploit-prediction score of 17% places it in the 97th percentile, indicating an elevated likelihood of exploitation.
Key facts
- Severity: High (CVSS 2.0 base score 7.5)
- EPSS exploit prediction: 17% (97th percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Broadcom Brightstor Arcserve Backup
- Published:
- Last modified:
Description
Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
Frequently asked questions
- What is CVE-2004-1096?
- Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.
- How severe is CVE-2004-1096?
- CVE-2004-1096 has a CVSS 2.0 base score of 7.5, rated high severity.
- Is CVE-2004-1096 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 17% (97th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2004-1096?
- CVE-2004-1096 primarily affects Broadcom Brightstor Arcserve Backup. In total, 47 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2004-1096?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2004-1096 published?
- CVE-2004-1096 was published on 2005-01-10 and last updated on 2026-06-16.
References
- http://secunia.com/advisories/13038/
- http://www.gentoo.org/security/en/glsa/glsa-200410-31.xml
- http://www.idefense.com/application/poi/display?id=153&type=vulnerabilities&flashstatus=true
- http://www.kb.cert.org/vuls/id/492545
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:118
- http://www.securityfocus.com/bid/11448
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17761
Affected products (47)
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_antivirus:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_antivirus:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_antivirus_gateway:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_antivirus_gateway:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_ez_antivirus:6.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_ez_antivirus:6.2:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_ez_antivirus:6.3:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_ez_armor:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_ez_armor:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_ez_armor:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_intrusion_detection:1.4.1.13:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_intrusion_detection:1.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_intrusion_detection:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_secure_content_manager:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_secure_content_manager:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:inoculateit:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:ca:etrust_antivirus:7.0_sp2:*:*:*:*:*:*:*
- cpe:2.3:a:ca:etrust_secure_content_manager:1.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:eset_software:nod32_antivirus:1.0.11:*:*:*:*:*:*:*
- cpe:2.3:a:eset_software:nod32_antivirus:1.0.12:*:*:*:*:*:*:*
- cpe:2.3:a:eset_software:nod32_antivirus:1.0.13:*:*:*:*:*:*:*
- cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:kaspersky_lab:kaspersky_anti-virus:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:mcafee:antivirus_engine:4.3.20:*:*:*:*:*:*:*
- cpe:2.3:a:rav_antivirus:rav_antivirus_desktop:8.6:*:*:*:*:*:*:*
- cpe:2.3:a:rav_antivirus:rav_antivirus_for_file_servers:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:rav_antivirus:rav_antivirus_for_mail_servers:8.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.78:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.78d:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.79:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.80:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.81:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.82:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.83:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.84:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.85:*:*:*:*:*:*:*
- cpe:2.3:a:sophos:sophos_anti-virus:3.86:*:*:*:*:*:*:*
More vulnerabilities in Broadcom Brightstor Arcserve Backup
- CVE-2008-3175 — Critical (CVSS 10.0): Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops…
- CVE-2008-2241 — Critical (CVSS 10.0): Directory traversal vulnerability in caloggerd in CA BrightStor ARCServe Backup 11.0, 11.1, and 11.5 allows remote…
- CVE-2007-5327 — Critical (CVSS 10.0): Stack-based buffer overflow in the RPC interface for the Message Engine (mediasvr.exe) in CA BrightStor ARCServe BackUp…
- CVE-2007-5329 — Critical (CVSS 10.0): Unspecified vulnerability in dbasvr in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5,…
- CVE-2007-5328 — Critical (CVSS 10.0): The Message Engine RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5,…
- CVE-2007-5332 — Critical (CVSS 10.0): Multiple unspecified vulnerabilities in (1) mediasvr and (2) caloggerd in CA BrightStor ARCServe BackUp v9.01 through…