17 matches found
CVE-2012-1459
CVE-2012-1459 affects multiple antivirus products including ClamAV. The issue is a vulnerability in the TAR file parser where a TAR archive entry length field could correspond to the entire entry plus part of the header of the next entry, allowing remote attackers to bypass malware detection. The...
CVE-2012-1457
CVE-2012-1457 affects the TAR file parser in multiple antivirus products (e.g., ClamAV and others) and allows remote attackers to bypass malware detection by crafting a TAR entry whose length exceeds the TAR file size. Connected advisories confirm this issue across vendor updates (e.g., openSUSE ...
CVE-2012-1443
CVE-2012-1443 describes a bypass in the RAR file parser used by multiple antivirus products (e.g., ClamAV 0.96.4-related integrations and several vendors) where a RAR file starting with an MZ character sequence can be analyzed by user-assisted remote attackers to bypass malware detection. The evi...
CVE-2012-1456
The CVE-2012-1456 entry concerns a vulnerability in the TAR file parser across multiple AV products (AVG, Quick Heal, Comodo, Emsisoft, eSafe, F-Prot, Fortinet, Ikarus, Jiangmin, Kaspersky, McAfee, Norman, Panda, Rising, Sophos, AVEngine 20101.3.0.103 in Symantec Endpoint Protection, Trend Micro)...
CVE-2012-1431
CVE-2012-1431 covers a vulnerability in the ELF file parser used by multiple antivirus products (Bitdefender 7.2, Command Antivirus 5.2.11.5, Comodo 7424, eSafe 7.0.17.0, F-Prot 4.6.2.117, F-Secure 9.0.16160.0, McAfee Gateway/Webwasher 2010.1C, nProtect 2011-01-17.01, Sophos 4.61.0, Rising 22.83....
CVE-2012-1463
The CVE-2012-1463 entry describes a vulnerability in the ELF file parsers used by multiple antivirus products (e.g., AhnLab V3 Internet Security, Bitdefender, Quick Heal, Command Antivirus, Comodo, eSafe, F-Prot, F-Secure, McAfee, Norman, nProtect, Panda). The issue is a flaw in the ELF parser re...
CVE-2008-3244
CVE-2008-3244 affects F-PROT Antivirus. The vulnerability arises in the scanning engine (before 4.4.4) used by F-PROT until version 6.0.9.0, where processing a CHM file with a large nb_dir value can trigger an out-of-bounds read, leading to remote denial of service (engine crash). Related OpenVAS...
CVE-2006-6293
FRISK Software F-Prot Antivirus prior to version 4.6.7 is affected by a heap-based buffer overflow that can be triggered by a crafted CHM file, enabling a user-assisted remote attacker to execute arbitrary code. The issue exists in the current CVE-2006-6293 entry and has a noted overlap with CVE-...
CVE-2012-1423
The CVE-2012-1423 entry covers a TAR file parser flaw affecting multiple antivirus products (Command Antivirus 5.2.11.5; Emsisoft Anti-Malware 5.1.0.1; F-Prot Antivirus 4.6.2.117; Fortinet Antivirus 4.2.254.0; Ikarus T3 CLI Scanner 1.1.97.0; K7 AntiVirus 9.77.3565; NOD32 5795; Norman 6.06.12; PC ...
CVE-2009-1783
CVE-2009-1783 affects FRISK Software F-Prot antivirus products (Windows and Linux variants as listed by OpenVAS) and enables a remote attacker to bypass malware detection through a crafted CAB archive. The OpenVAS entries specifically label it a Security Bypass vulnerability in F-Prot for Windows...
CVE-2008-5747
CVE-2008-5747 affects F-PROT Antivirus for GNU/Linux. The vulnerability arises from ELF header handling: a crafted ELF binary with a “corrupted” header can be executed, enabling a remote attacker to bypass antivirus protection. Per OpenVAS/GLSA entries, this vulnerability is categorized as a Deni...
CVE-2012-1420
The CVE-2012-1420 entry concerns multiple antivirus products (Quick Heal/Cat QuickHeal 11.00; Command Antivirus 5.2.11.5; F-Prot 4.6.2.117; Fortinet 4.2.254.0; K7 9.77.3565; Kaspersky 7.0.0.125; Antimalware Engine 1.1.6402.0; Microsoft Security Essentials 2.0; NOD32 5795; Norman 6.06.12; Panda 10...
CVE-2008-3243
CVE-2008-3243 concerns the F-PROT Antivirus engine. Technical sources (CVE entry, GLSA 200904-14, and OpenVAS/Nessus summaries) indicate multiple DoS-type vulnerabilities in the engine prior to 4.4.4, affecting F-PROT Antivirus versions before 6.0.9.0. An attacker could remotely trigger denial of...
CVE-2012-1460
Technical details are not publicly available in the provided documents; monitor for updates.
CVE-2008-3447
CVE-2008-3447 concerns the scanner engine in F-Prot Antivirus version 6.2.1 4252 . The vulnerability allows remote attackers to cause a denial of service via a malformed ZIP archive, likely related to invalid offsets, resulting in an infinite loop. The available documents identify the affected co...
CVE-2006-6407
CVE-2006-6407 concerns F-Prot Antivirus for Linux x86 Mail Servers 4.6.6. The vulnerability allows remote attackers to bypass virus detection by injecting invalid characters into base64-encoded content within a multipart/mixed MIME file, demonstrated using the EICAR test file. This indicates a fl...
CVE-2012-1426
The CVE-2012-1426 entry describes a vulnerability in the TAR file parser used by Quick Heal (Cat QuickHeal) 11.00 and several antivirus products (Command Antivirus 5.2.11.5, F-Prot 4.6.2.117, K7 AntiVirus 9.77.3565, Norman 6.06.12, Rising 22.83.00.03) where a POSIX TAR file containing an initial ...