8 matches found
CVE-2012-1459
CVE-2012-1459 affects multiple antivirus products including ClamAV. The issue is a vulnerability in the TAR file parser where a TAR archive entry length field could correspond to the entire entry plus part of the header of the next entry, allowing remote attackers to bypass malware detection. The...
CVE-2012-1457
CVE-2012-1457 affects the TAR file parser in multiple antivirus products (e.g., ClamAV and others) and allows remote attackers to bypass malware detection by crafting a TAR entry whose length exceeds the TAR file size. Connected advisories confirm this issue across vendor updates (e.g., openSUSE ...
CVE-2012-1443
CVE-2012-1443 describes a bypass in the RAR file parser used by multiple antivirus products (e.g., ClamAV 0.96.4-related integrations and several vendors) where a RAR file starting with an MZ character sequence can be analyzed by user-assisted remote attackers to bypass malware detection. The evi...
CVE-2012-1461
The CVE-2012-1461 entry documents a vulnerability in the Gzip file parser used by multiple antivirus products (e.g., AVG, Bitdefender, Kaspersky, Symantec Endpoint Protection, Trend Micro, and others) that allows remote attackers to bypass malware detection by delivering a .tar.gz file containing...
CVE-2012-1456
The CVE-2012-1456 entry concerns a vulnerability in the TAR file parser across multiple AV products (AVG, Quick Heal, Comodo, Emsisoft, eSafe, F-Prot, Fortinet, Ikarus, Jiangmin, Kaspersky, McAfee, Norman, Panda, Rising, Sophos, AVEngine 20101.3.0.103 in Symantec Endpoint Protection, Trend Micro)...
CVE-2012-1453
CVE-2012-1453 affects multiple antivirus products whose CAB file parsers can bypass malware detection when a CAB file’s coffFiles field is modified. Affected vendors/products include Dr.Web 5.0.2.03300; Trend Micro HouseCall 9.120.0.1004; Kaspersky Anti-Virus 7.0.0.125; Sophos Anti-Virus 4.61.0; ...
CVE-2012-1425
The CVE-2012-1425 entry covers a flaw in the TAR file parser used by multiple antivirus products (e.g., Avira AntiVir, AVL SDK, Quick Heal, Emsisoft, Fortinet, Ikarus, Jiangmin, Kaspersky, McAfee engines, NOD32, Norman, PC Tools, Symantec Endpoint Protection, Trend Micro) where a TAR file beginni...
CVE-2012-1448
The CVE-2012-1448 entry affects multiple AV products and parsers (Quick Heal/Cat QuickHeal 11.00, Trend Micro Antivirus 9.120.0.1004, Ikarus Virus Utilities T3 CLI Scanner 1.1.97.0, Trend Micro HouseCall 9.120.0.1004, and Emsisoft Anti‑Malware 5.1.0.1). The root cause is a CAB file parser flaw th...