QwikSec

Security Database

CVE

CWE

Training

CVE-2012-1426

Published: Mar 21, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, K7 AntiVirus 9.77.3565, Norman Antivirus 6.06.12, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \42\5A\68 character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_OSVDB

20120319 Evasion attacks expoliting file-parsing vulnerabilities in antivirus products

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_OSVDB

vdb-entry

x_refsource_BID

http://www.ieee-security.org/TC/SP2012/program.html

x_refsource_MISC

vdb-entry

x_refsource_OSVDB

multiple-av-tar-evasion-cve20121426(74241)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.