11 matches found
CVE-2012-1459
CVE-2012-1459 affects multiple antivirus products including ClamAV. The issue is a vulnerability in the TAR file parser where a TAR archive entry length field could correspond to the entire entry plus part of the header of the next entry, allowing remote attackers to bypass malware detection. The...
CVE-2012-1457
CVE-2012-1457 affects the TAR file parser in multiple antivirus products (e.g., ClamAV and others) and allows remote attackers to bypass malware detection by crafting a TAR entry whose length exceeds the TAR file size. Connected advisories confirm this issue across vendor updates (e.g., openSUSE ...
CVE-2012-1443
CVE-2012-1443 describes a bypass in the RAR file parser used by multiple antivirus products (e.g., ClamAV 0.96.4-related integrations and several vendors) where a RAR file starting with an MZ character sequence can be analyzed by user-assisted remote attackers to bypass malware detection. The evi...
CVE-2012-1461
The CVE-2012-1461 entry documents a vulnerability in the Gzip file parser used by multiple antivirus products (e.g., AVG, Bitdefender, Kaspersky, Symantec Endpoint Protection, Trend Micro, and others) that allows remote attackers to bypass malware detection by delivering a .tar.gz file containing...
CVE-2012-1431
CVE-2012-1431 covers a vulnerability in the ELF file parser used by multiple antivirus products (Bitdefender 7.2, Command Antivirus 5.2.11.5, Comodo 7424, eSafe 7.0.17.0, F-Prot 4.6.2.117, F-Secure 9.0.16160.0, McAfee Gateway/Webwasher 2010.1C, nProtect 2011-01-17.01, Sophos 4.61.0, Rising 22.83....
CVE-2012-1463
The CVE-2012-1463 entry describes a vulnerability in the ELF file parsers used by multiple antivirus products (e.g., AhnLab V3 Internet Security, Bitdefender, Quick Heal, Command Antivirus, Comodo, eSafe, F-Prot, F-Secure, McAfee, Norman, nProtect, Panda). The issue is a flaw in the ELF parser re...
CVE-2012-1423
The CVE-2012-1423 entry covers a TAR file parser flaw affecting multiple antivirus products (Command Antivirus 5.2.11.5; Emsisoft Anti-Malware 5.1.0.1; F-Prot Antivirus 4.6.2.117; Fortinet Antivirus 4.2.254.0; Ikarus T3 CLI Scanner 1.1.97.0; K7 AntiVirus 9.77.3565; NOD32 5795; Norman 6.06.12; PC ...
CVE-2012-1420
The CVE-2012-1420 entry concerns multiple antivirus products (Quick Heal/Cat QuickHeal 11.00; Command Antivirus 5.2.11.5; F-Prot 4.6.2.117; Fortinet 4.2.254.0; K7 9.77.3565; Kaspersky 7.0.0.125; Antimalware Engine 1.1.6402.0; Microsoft Security Essentials 2.0; NOD32 5795; Norman 6.06.12; Panda 10...
CVE-2012-1460
Technical details are not publicly available in the provided documents; monitor for updates.
CVE-2012-1426
The CVE-2012-1426 entry describes a vulnerability in the TAR file parser used by Quick Heal (Cat QuickHeal) 11.00 and several antivirus products (Command Antivirus 5.2.11.5, F-Prot 4.6.2.117, K7 AntiVirus 9.77.3565, Norman 6.06.12, Rising 22.83.00.03) where a POSIX TAR file containing an initial ...
CVE-2007-2917
CVE-2007-2917 involves multiple buffer overflows in the odapi.dll ActiveX control used by Authentium Command Antivirus (pre-4.93.8). The vulnerability could allow remote arbitrary code execution via unspecified vectors on Windows hosts with the ActiveX control enabled. The issue is documented acr...