Lucene search

[email protected]CVE-2012-1419

HistoryMar 21, 2012 - 10:11 a.m.

CVE-2012-1419

2012-03-2110:11:47

CWE-264

[email protected]

web.nvd.nist.gov

cve-2012-1419

clamav

quick heal

tar file parser

remote attackers

malware detection

security vulnerability

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

6.3

Confidence

Low

EPSS

0.926

Percentile

99.0%

JSON

The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat QuickHeal) 11.00 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial [aliases] character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Affected configurations

NVD

Node

catquick_healMatch11.00

clamavclamavMatch0.96.4

VendorProductVersionCPE
catquick_heal11.00cpe:/a:cat:quick_heal:11.00:::
clamavclamav0.96.4cpe:/a:clamav:clamav:0.96.4:::

Vendor	Product	Version	CPE
cat	quick_heal	11.00	cpe:/a:cat:quick_heal:11.00:::
clamav	clamav	0.96.4	cpe:/a:clamav:clamav:0.96.4:::

References

osvdb.org/80409

www.ieee-security.org/TC/SP2012/program.html

www.securityfocus.com/archive/1/522005

www.securityfocus.com/bid/52572

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

6.3

Confidence

Low

EPSS

0.926

Percentile

99.0%

JSON

Related for CVE-2012-1419

debiancve1 prion1 cvelist1 ubuntucve1 nvd1 openvas2 nessus1 freebsd1