CVE Vulnerabilities

CVE-2012-1443

Published: Mar 21, 2012 | Modified: Nov 06, 2012
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal (aka Cat QuickHeal) 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0.1, PC Tools AntiVirus 7.0.3.5, F-Prot Antivirus 4.6.2.117, VirusBuster 13.6.151.0, Fortinet Antivirus 4.2.254.0, Antiy Labs AVL SDK 2.0.3.7, K7 AntiVirus 9.77.3565, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Jiangmin Antivirus 13.0.900, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, Sophos Anti-Virus 4.61.0, NOD32 Antivirus 5795, Avira AntiVir 7.11.1.163, Norman Antivirus 6.06.12, McAfee Anti-Virus Scanning Engine 5.400.0.1158, Panda Antivirus 10.0.2.7, McAfee Gateway (formerly Webwasher) 2010.1C, Trend Micro AntiVirus 9.120.0.1004, Comodo Antivirus 7424, Bitdefender 7.2, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, nProtect Anti-Virus 2011-01-17.01, AhnLab V3 Internet Security 2011.01.18.00, AVG Anti-Virus 10.0.0.1190, avast! Antivirus 4.8.1351.0 and 5.0.677.0, and VBA32 3.12.14.2 allows user-assisted remote attackers to bypass malware detection via a RAR file with an initial MZ character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different RAR parser implementations.

Affected Software

Name Vendor Start Version End Version
V3_internet_security Ahnlab 2011.01.18.00 (including) 2011.01.18.00 (including)
Esafe Aladdin 7.0.17.0 (including) 7.0.17.0 (including)
Avast_antivirus Alwil 4.8.1351.0 (including) 4.8.1351.0 (including)
Avast_antivirus Alwil 5.0.677.0 (including) 5.0.677.0 (including)
Vba32 Anti-virus 3.12.14.2 (including) 3.12.14.2 (including)
Avl_sdk Antiy 2.0.3.7 (including) 2.0.3.7 (including)
Command_antivirus Authentium 5.2.11.5 (including) 5.2.11.5 (including)
Avg_anti-virus Avg 10.0.0.1190 (including) 10.0.0.1190 (including)
Antivir Avira 7.11.1.163 (including) 7.11.1.163 (including)
Bitdefender Bitdefender 7.2 (including) 7.2 (including)
Quick_heal Cat 11.00 (including) 11.00 (including)
Clamav Clamav 0.96.4 (including) 0.96.4 (including)
Comodo_antivirus Comodo 7424 (including) 7424 (including)
Anti-malware Emsisoft 5.1.0.1 (including) 5.1.0.1 (including)
Nod32_antivirus Eset 5795 (including) 5795 (including)
F-prot_antivirus F-prot 4.6.2.117 (including) 4.6.2.117 (including)
F-secure_anti-virus F-secure 9.0.16160.0 (including) 9.0.16160.0 (including)
Fortinet_antivirus Fortinet 4.2.254.0 (including) 4.2.254.0 (including)
G_data_antivirus Gdata-software 21 (including) 21 (including)
Ikarus_virus_utilities_t3_command_line_scanner Ikarus 1.1.97.0 (including) 1.1.97.0 (including)
Jiangmin_antivirus Jiangmin 13.0.900 (including) 13.0.900 (including)
Antivirus K7computing 9.77.3565 (including) 9.77.3565 (including)
Kaspersky_anti-virus Kaspersky 7.0.0.125 (including) 7.0.0.125 (including)
Gateway Mcafee 2010.1c (including) 2010.1c (including)
Scan_engine Mcafee 5.400.0.1158 (including) 5.400.0.1158 (including)
Security_essentials Microsoft 2.0 (including) 2.0 (including)
Norman_antivirus_&_antispyware Norman 6.06.12 (including) 6.06.12 (including)
Nprotect_antivirus Nprotect 2011-01-17.01 (including) 2011-01-17.01 (including)
Panda_antivirus Pandasecurity 10.0.2.7 (including) 10.0.2.7 (including)
Pc_tools_antivirus Pc_tools 7.0.3.5 (including) 7.0.3.5 (including)
Rising_antivirus Rising-global 22.83.00.03 (including) 22.83.00.03 (including)
Sophos_anti-virus Sophos 4.61.0 (including) 4.61.0 (including)
Endpoint_protection Symantec 11.0 (including) 11.0 (including)
Housecall Trendmicro 9.120.0.1004 (including) 9.120.0.1004 (including)
Trend_micro_antivirus Trendmicro 9.120.0.1004 (including) 9.120.0.1004 (including)
Virusbuster Virusbuster 13.6.151.0 (including) 13.6.151.0 (including)
Clamav Ubuntu maverick *
Clamav Ubuntu upstream *

References