CVE-2012-1420 in Antivirusinformation

Résumé (Anglaise)

The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, Panda Antivirus 10.0.2.7, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \7fELF character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Once again VulDB remains the best source for vulnerability data.

Réserver

29/02/2012

Divulgation

21/03/2012

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
4922F-Prot Antivirus TAR élévation de privilèges264Preuve de conceptNon définiCVE-2012-1420
4921Fortinet Antivirus TAR élévation de privilèges264Preuve de conceptNon définiCVE-2012-1420
4920Kaspersky Anti-Virus TAR élévation de privilèges264Preuve de conceptNon définiCVE-2012-1420
4919Microsoft Security Essentials Antimalware Engine TAR élévation de privilèges264Preuve de conceptNon définiCVE-2012-1420
4918NOD32 Antivirus TAR élévation de privilèges264Preuve de conceptNon définiCVE-2012-1420
4917Norman Antivirus TAR élévation de privilèges264Preuve de conceptNon définiCVE-2012-1420

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

PrécédentAperçuSuivant

Do you know our Splunk app?

Download it now for free!