Lucene search

[email protected]CVE-2012-1423

HistoryMar 21, 2012 - 10:11 a.m.

CVE-2012-1423

2012-03-2110:11:47

CWE-264

[email protected]

web.nvd.nist.gov

cve-2012-1423

tar file parser

antivirus

bypass

malware detection

vulnerability

6.7 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.962 High

EPSS

Percentile

99.5%

JSON

The TAR file parser in Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, K7 AntiVirus 9.77.3565, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial MZ character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Affected configurations

NVD

Node

authentiumcommand_antivirusMatch5.2.11.5

emsisoftanti-malwareMatch5.1.0.1

esetnod32_antivirusMatch5795

f-protf-prot_antivirusMatch4.6.2.117

fortinetfortinet_antivirusMatch4.2.254.0

ikarusikarus_virus_utilities_t3_command_line_scannerMatch1.1.97.0

k7computingantivirusMatch9.77.3565

normannorman_antivirus_\&_antispywareMatch6.06.12

pc_toolspc_tools_antivirusMatch7.0.3.5

rising-globalrising_antivirusMatch22.83.00.03

virusbustervirusbusterMatch13.6.151.0

CPENameOperatorVersion
authentium:command_antivirusauthentium command antiviruseq5.2.11.5
emsisoft:anti-malwareemsisoft anti-malwareeq5.1.0.1
eset:nod32_antiviruseset nod32 antiviruseq5795
f-prot:f-prot_antivirusf-prot f-prot antiviruseq4.6.2.117
fortinet:fortinet_antivirusfortinet fortinet antiviruseq4.2.254.0
ikarus:ikarus_virus_utilities_t3_command_line_scannerikarus ikarus virus utilities t3 command line scannereq1.1.97.0
k7computing:antivirusk7computing antiviruseq9.77.3565
norman:norman_antivirus_\&_antispywarenorman norman antivirus & antispywareeq6.06.12
pc_tools:pc_tools_antiviruspc tools pc tools antiviruseq7.0.3.5
rising-global:rising_antivirusrising-global rising antiviruseq22.83.00.03

CPE	Name	Operator	Version
authentium:command_antivirus	authentium command antivirus	eq	5.2.11.5
emsisoft:anti-malware	emsisoft anti-malware	eq	5.1.0.1
eset:nod32_antivirus	eset nod32 antivirus	eq	5795
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	4.6.2.117
fortinet:fortinet_antivirus	fortinet fortinet antivirus	eq	4.2.254.0
ikarus:ikarus_virus_utilities_t3_command_line_scanner	ikarus ikarus virus utilities t3 command line scanner	eq	1.1.97.0
k7computing:antivirus	k7computing antivirus	eq	9.77.3565
norman:norman_antivirus_\&_antispyware	norman norman antivirus & antispyware	eq	6.06.12
pc_tools:pc_tools_antivirus	pc tools pc tools antivirus	eq	7.0.3.5
rising-global:rising_antivirus	rising-global rising antivirus	eq	22.83.00.03

Rows per page:

1-10 of 111

References

osvdb.org/80393

osvdb.org/80395

osvdb.org/80396

osvdb.org/80406

osvdb.org/80407

www.ieee-security.org/TC/SP2012/program.html

www.securityfocus.com/archive/1/522005

6.7 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.962 High

EPSS

Percentile

99.5%

JSON

Related for CVE-2012-1423

nvd1 prion1 cvelist1