8 matches found
CVE-2012-1459
CVE-2012-1459 affects multiple antivirus products including ClamAV. The issue is a vulnerability in the TAR file parser where a TAR archive entry length field could correspond to the entire entry plus part of the header of the next entry, allowing remote attackers to bypass malware detection. The...
CVE-2012-1457
CVE-2012-1457 affects the TAR file parser in multiple antivirus products (e.g., ClamAV and others) and allows remote attackers to bypass malware detection by crafting a TAR entry whose length exceeds the TAR file size. Connected advisories confirm this issue across vendor updates (e.g., openSUSE ...
CVE-2012-1443
CVE-2012-1443 describes a bypass in the RAR file parser used by multiple antivirus products (e.g., ClamAV 0.96.4-related integrations and several vendors) where a RAR file starting with an MZ character sequence can be analyzed by user-assisted remote attackers to bypass malware detection. The evi...
CVE-2012-1423
The CVE-2012-1423 entry covers a TAR file parser flaw affecting multiple antivirus products (Command Antivirus 5.2.11.5; Emsisoft Anti-Malware 5.1.0.1; F-Prot Antivirus 4.6.2.117; Fortinet Antivirus 4.2.254.0; Ikarus T3 CLI Scanner 1.1.97.0; K7 AntiVirus 9.77.3565; NOD32 5795; Norman 6.06.12; PC ...
CVE-2012-1446
The CVE-2012-1446 entry describes a vulnerability in multiple antivirus/ELF parsers where an ELF file with a modified encoding field can bypass malware detection. Affected products include Quick Heal (Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, Symantec Endpoint Protecti...
CVE-2012-1425
The CVE-2012-1425 entry covers a flaw in the TAR file parser used by multiple antivirus products (e.g., Avira AntiVir, AVL SDK, Quick Heal, Emsisoft, Fortinet, Ikarus, Jiangmin, Kaspersky, McAfee engines, NOD32, Norman, PC Tools, Symantec Endpoint Protection, Trend Micro) where a TAR file beginni...
CVE-2012-1424
The CVE-2012-1424 entry relates to a vulnerability in the TAR file parser used by multiple products: Antiy Labs AVL SDK 2.0.3.7, Quick Heal (Cat QuickHeal) 11.00, Jiangmin Antivirus 13.0.900, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, and Sophos Anti-Virus 4.61.0. The issue allows remo...
CVE-2006-3114
PC Tools AntiVirus 2.1.0.51 is vulnerable due to insecure default permissions on the PC Tools AntiVirus directory, allowing local users to gain SYSTEM privileges by accessing and manipulating application files. The issue arises from granting Everyone Full Control on the directory and all child ob...