CVE-2012-1420

The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, Panda Antivirus 10.0.2.7, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \7fELF character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://osvdb.org/80403
http://osvdb.org/80406
http://osvdb.org/80407
http://osvdb.org/80409
http://www.ieee-security.org/TC/SP2012/program.html
http://www.securityfocus.com/archive/1/522005
http://osvdb.org/80403
http://osvdb.org/80406
http://osvdb.org/80407
http://osvdb.org/80409
http://www.ieee-security.org/TC/SP2012/program.html
http://www.securityfocus.com/archive/1/522005

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:authentium:command_antivirus:5.2.11.5:::::::*
	cpe:2.3:a:cat:quick_heal:11.00:::::::*
	cpe:2.3:a:eset:nod32_antivirus:5795:::::::*
	cpe:2.3:a:f-prot:f-prot_antivirus:4.6.2.117:::::::*
	cpe:2.3:a:fortinet:fortinet_antivirus:4.2.254.0:::::::*
	cpe:2.3:a:k7computing:antivirus:9.77.3565:::::::*
	cpe:2.3:a:kaspersky:kaspersky_anti-virus:7.0.0.125:::::::*
	cpe:2.3:a:microsoft:security_essentials:2.0:::::::*
	cpe:2.3:a:norman:norman_antivirus_\&_antispyware:6.06.12:::::::*
	cpe:2.3:a:pandasecurity:panda_antivirus:10.0.2.7:::::::*
	cpe:2.3:a:rising-global:rising_antivirus:22.83.00.03:::::::*

History

21 Nov 2024, 01:36

Type	Values Removed	Values Added
References	~~() http://osvdb.org/80403 -~~	() http://osvdb.org/80403 -
References	~~() http://osvdb.org/80406 -~~	() http://osvdb.org/80406 -
References	~~() http://osvdb.org/80407 -~~	() http://osvdb.org/80407 -
References	~~() http://osvdb.org/80409 -~~	() http://osvdb.org/80409 -
References	~~() http://www.ieee-security.org/TC/SP2012/program.html -~~	() http://www.ieee-security.org/TC/SP2012/program.html -
References	~~() http://www.securityfocus.com/archive/1/522005 -~~	() http://www.securityfocus.com/archive/1/522005 -

Information

Published : 2012-03-21 10:11

Updated : 2024-11-21 01:36

NVD link : CVE-2012-1420

Mitre link : CVE-2012-1420

CVE.ORG link : CVE-2012-1420

JSON object : View

Products Affected

rising-global

rising_antivirus

fortinet

fortinet_antivirus

kaspersky

kaspersky_anti-virus

cat

quick_heal

f-prot

f-prot_antivirus

k7computing

antivirus

microsoft

security_essentials

pandasecurity

panda_antivirus

authentium

command_antivirus

eset

nod32_antivirus

norman

norman_antivirus_\&_antispyware

CWE

CWE-264

Permissions, Privileges, and Access Controls

4.3 /10