CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
99.6%
The Gzip file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, and VBA32 3.12.14.2 allows remote attackers to bypass malware detection via a .tar.gz file with stray bytes at the end. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different Gzip parser implementations.
Vendor | Product | Version | CPE |
---|---|---|---|
aladdin | esafe | 7.0.17.0 | cpe:2.3:a:aladdin:esafe:7.0.17.0:*:*:*:*:*:*:* |
anti-virus | vba32 | 3.12.14.2 | cpe:2.3:a:anti-virus:vba32:3.12.14.2:*:*:*:*:*:*:* |
antiy | avl_sdk | 2.0.3.7 | cpe:2.3:a:antiy:avl_sdk:2.0.3.7:*:*:*:*:*:*:* |
authentium | command_antivirus | 5.2.11.5 | cpe:2.3:a:authentium:command_antivirus:5.2.11.5:*:*:*:*:*:*:* |
cat | quick_heal | 11.00 | cpe:2.3:a:cat:quick_heal:11.00:*:*:*:*:*:*:* |
f-prot | f-prot_antivirus | 4.6.2.117 | cpe:2.3:a:f-prot:f-prot_antivirus:4.6.2.117:*:*:*:*:*:*:* |
jiangmin | jiangmin_antivirus | 13.0.900 | cpe:2.3:a:jiangmin:jiangmin_antivirus:13.0.900:*:*:*:*:*:*:* |
k7computing | antivirus | 9.77.3565 | cpe:2.3:a:k7computing:antivirus:9.77.3565:*:*:*:*:*:*:* |