CVE-2012-1426

Опубликовано: 21 мар. 2012

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, K7 AntiVirus 9.77.3565, Norman Antivirus 6.06.12, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \42\5A\68 character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:authentium:command_antivirus:5.2.11.5:*:*:*:*:*:*:*

cpe:2.3:a:cat:quick_heal:11.00:*:*:*:*:*:*:*

cpe:2.3:a:f-prot:f-prot_antivirus:4.6.2.117:*:*:*:*:*:*:*

cpe:2.3:a:k7computing:antivirus:9.77.3565:*:*:*:*:*:*:*

cpe:2.3:a:norman:norman_antivirus_\&_antispyware:6.06.12:*:*:*:*:*:*:*

cpe:2.3:a:rising-global:rising_antivirus:22.83.00.03:*:*:*:*:*:*:*

EPSS

Процентиль: 57%

0.00349

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-jx63-73f5-2r54

github

больше 3 лет назад