CVE Vulnerabilities

CVE-2012-1427

Published: Mar 21, 2012 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Norman Antivirus 6.06.12, and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a POSIX TAR file with a 57696E5A6970 character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Affected Software

Name Vendor Start Version End Version
Quick_heal Cat 11.00 (including) 11.00 (including)
Norman_antivirus_&_antispyware Norman 6.06.12 (including) 6.06.12 (including)
Sophos_anti-virus Sophos 4.61.0 (including) 4.61.0 (including)

References