CVE-2020-9362

The Quick Heal AV parsing engine (November 2019) allows virus-detection bypass via a crafted GPFLAG in a ZIP archive. This affects Total Security, Home Security, Total Security Multi-Device, Internet Security, Total Security for Mac, AntiVirus Pro, AntiVirus for Server, and Total Security for Android.

CVSS v3 7.8 HIGH
CVSS v2.0 6.8 MEDIUM

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

6.8^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://packetstormsecurity.com/files/156580/QuickHeal-Generic-Malformed-Archive-Bypass.html	Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2020/Mar/14	Mailing List Third Party Advisory
https://blog.zoller.lu/p/from-low-hanging-fruit-department_24.html	Third Party Advisory
https://blog.zoller.lu/p/tzo-20-2020-quickheal-malformed-archive.html	Third Party Advisory
http://packetstormsecurity.com/files/156580/QuickHeal-Generic-Malformed-Archive-Bypass.html	Third Party Advisory VDB Entry
http://seclists.org/fulldisclosure/2020/Mar/14	Mailing List Third Party Advisory
https://blog.zoller.lu/p/from-low-hanging-fruit-department_24.html	Third Party Advisory
https://blog.zoller.lu/p/tzo-20-2020-quickheal-malformed-archive.html	Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:quickheal:antivirus_for_server:2019-11:::::::*
	cpe:2.3:a:quickheal:antivirus_pro:2019-11:::::::*
	cpe:2.3:a:quickheal:home_security:2019-11:::::::*
	cpe:2.3:a:quickheal:internet_security:2019-11:::::::*
	cpe:2.3:a:quickheal:total_security:2019-11:::::-::
	cpe:2.3:a:quickheal:total_security:2019-11:::::android::
	cpe:2.3:a:quickheal:total_security:2019-11:::::mac_os::
	cpe:2.3:a:quickheal:total_security_multi-device:2019-11:::::::*

History

21 Nov 2024, 05:40

Type	Values Removed	Values Added
References	~~() http://packetstormsecurity.com/files/156580/QuickHeal-Generic-Malformed-Archive-Bypass.html - Third Party Advisory, VDB Entry~~	() http://packetstormsecurity.com/files/156580/QuickHeal-Generic-Malformed-Archive-Bypass.html - Third Party Advisory, VDB Entry
References	~~() http://seclists.org/fulldisclosure/2020/Mar/14 - Mailing List, Third Party Advisory~~	() http://seclists.org/fulldisclosure/2020/Mar/14 - Mailing List, Third Party Advisory
References	~~() https://blog.zoller.lu/p/from-low-hanging-fruit-department_24.html - Third Party Advisory~~	() https://blog.zoller.lu/p/from-low-hanging-fruit-department_24.html - Third Party Advisory
References	~~() https://blog.zoller.lu/p/tzo-20-2020-quickheal-malformed-archive.html - Third Party Advisory~~	() https://blog.zoller.lu/p/tzo-20-2020-quickheal-malformed-archive.html - Third Party Advisory

18 Apr 2022, 15:12

Type	Values Removed	Values Added
CWE	~~CWE-20~~	CWE-436
References	~~(FULLDISC) http://seclists.org/fulldisclosure/2020/Mar/14 -~~	(FULLDISC) http://seclists.org/fulldisclosure/2020/Mar/14 - Mailing List, Third Party Advisory
References	~~(MISC) http://packetstormsecurity.com/files/156580/QuickHeal-Generic-Malformed-Archive-Bypass.html -~~	(MISC) http://packetstormsecurity.com/files/156580/QuickHeal-Generic-Malformed-Archive-Bypass.html - Third Party Advisory, VDB Entry

Information

Published : 2020-02-24 16:15

Updated : 2024-11-21 05:40

NVD link : CVE-2020-9362

Mitre link : CVE-2020-9362

CVE.ORG link : CVE-2020-9362

JSON object : View

Products Affected

quickheal

antivirus_for_server
home_security
antivirus_pro
internet_security
total_security
total_security_multi-device

CWE

CWE-436

Interpretation Conflict

7.8 /10