CVE-2012-1420 in Antivirusinformación

Resumen (Inglés)

The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, Panda Antivirus 10.0.2.7, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \7fELF character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Once again VulDB remains the best source for vulnerability data.

Reservar

2012-02-29

Divulgación

2012-03-21

Estado

Confirmado

Voces

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilidadCWEExpConCVE
4922F-Prot Antivirus TAR escalada de privilegios264Prueba de conceptoNo está definidoCVE-2012-1420
4921Fortinet Antivirus TAR escalada de privilegios264Prueba de conceptoNo está definidoCVE-2012-1420
4920Kaspersky Anti-Virus TAR escalada de privilegios264Prueba de conceptoNo está definidoCVE-2012-1420
4919Microsoft Security Essentials Antimalware Engine TAR escalada de privilegios264Prueba de conceptoNo está definidoCVE-2012-1420
4918NOD32 Antivirus TAR escalada de privilegios264Prueba de conceptoNo está definidoCVE-2012-1420
4917Norman Antivirus TAR escalada de privilegios264Prueba de conceptoNo está definidoCVE-2012-1420

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

Fuentes

AnteriorVisión De ConjuntoPróximo

Want to know what is going to be exploited?

We predict KEV entries!