Operational Defect Database
BugZero found this defect 2434 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
WatchGuard Technologies | kA10H000000g3c3SAA
Gateway AV scan bypassed for large files
Last update date:
9/21/2017
Affected products:
Firebox M200
Firebox M300
Firebox M270
Firebox M370
Firebox M470
Firebox M570
Firebox M670
Firebox M290
Firebox M390
Firebox M400
Firebox M500
Firebox M440
Affected releases:
All
Fireware
12.x
12.0.x
Fixed releases:
All
Description:
Issue
In Fireware v12.0, Gateway AntiVirus was updated to use a scan engine and signature set from Bitdefender. Gateway AV no longer supports partial file scanning. Gateway AV now automatically uses a scan limit that is much higher than the previous default values so that more files get a complete security scan. The limit is 5 MB or 10 MB and is based on the hardware model. Firebox T10, T30, XTM 25, 26, 33 If the Gateway AV File Scan limit is set to less than 5 MB, Gateway AV scans files up to 5 MB in size All other Firebox models If the Gateway AV File Scan limit is set to less than 10 MB, Gateway AV scans files up to 10 MB in size If a file exceeds the increased Gateway AV scan size limit, scanning is bypassed and Gateway AV takes the same action as when a scan error occurs.If APT Blocker is enabled, and a file is too large to be scanned by Gateway AV, the file is also not uploaded for APT analysis.
