Lucene search

[email protected]CVE-2012-1419

HistoryMar 21, 2012 - 10:11 a.m.

CVE-2012-1419

2012-03-2110:11:47

CWE-264

[email protected]

web.nvd.nist.gov

cve-2012-1419

clamav

quick heal

tar file parser

remote attackers

malware detection

security vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.3 Medium

AI Score

Confidence

Low

0.926 High

EPSS

Percentile

99.0%

JSON

The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat QuickHeal) 11.00 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial [aliases] character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Affected configurations

NVD

Node

catquick_healMatch11.00

clamavclamavMatch0.96.4

CPENameOperatorVersion
cat:quick_healcat quick healeq11.00
clamav:clamavclamaveq0.96.4

CPE	Name	Operator	Version
cat:quick_heal	cat quick heal	eq	11.00
clamav:clamav	clamav	eq	0.96.4

References

osvdb.org/80409

www.ieee-security.org/TC/SP2012/program.html

www.securityfocus.com/archive/1/522005

www.securityfocus.com/bid/52572

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.3 Medium

AI Score

Confidence

Low

0.926 High

EPSS

Percentile

99.0%

JSON

Related for CVE-2012-1419

prion1 debiancve1 ubuntucve1 nvd1 cvelist1 nessus1 openvas2 freebsd1