Vulnerability in Authentium Command_antivirus
CVE-2012-1426
The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, K7 AntiVirus 9.77.3565, Norman Antivirus 6.06.12, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malwa…
EPSS: 0.003 (57.7th percentile) — read the EPSS interpretation.
Affected products
- Authentium Command_antivirus — versions 5.2.11.5
- Cat Quick_heal — versions 11.00
- F-prot F-prot_antivirus — versions 4.6.2.117
- K7computing Antivirus — versions 9.77.3565
- Norman Norman_antivirus_\&_antispyware — versions 6.06.12
- Rising-global Rising_antivirus — versions 22.83.00.03
- N/a — versions n/a
Weakness classification (CWE)
References
- 80406 (x_refsource_OSVDB, vdb-entry)
- 20120319 Evasion attacks expoliting file-parsing vulnerabilities in antivirus products (mailing-list, x_refsource_BUGTRAQ)
- 80409 (x_refsource_OSVDB, vdb-entry)
- 52585 (vdb-entry, x_refsource_BID)
- cve@mitre.org (x_refsource_MISC)
- 80407 (x_refsource_OSVDB, vdb-entry)
- multiple-av-tar-evasion-cve20121426(74241) (vdb-entry, x_refsource_XF)