Vulnerability in Ahnlab V3_internet_security
CVE-2012-1443
The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal (aka Cat QuickHeal) 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3…
EPSS: 0.502 (97.9th percentile) — read the EPSS interpretation.
Affected products
- Ahnlab V3_internet_security — versions 2011.01.18.00
- Aladdin Esafe — versions 7.0.17.0
- Alwil Avast_antivirus — versions 4.8.1351.0, 5.0.677.0
- Anti-virus Vba32 — versions 3.12.14.2
- Antiy Avl_sdk — versions 2.0.3.7
- Authentium Command_antivirus — versions 5.2.11.5
- Avg Avg_anti-virus — versions 10.0.0.1190
- Avira Antivir — versions 7.11.1.163
- Bitdefender — versions 7.2
- Cat Quick_heal — versions 11.00
Weakness classification (CWE)
References
- 80472 (x_refsource_OSVDB, vdb-entry)
- 20120319 Evasion attacks expoliting file-parsing vulnerabilities in antivirus products (mailing-list, x_refsource_BUGTRAQ)
- 52612 (vdb-entry, x_refsource_BID)
- 80467 (x_refsource_OSVDB, vdb-entry)
- 80461 (x_refsource_OSVDB, vdb-entry)
- 80470 (x_refsource_OSVDB, vdb-entry)
- 80460 (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (x_refsource_MISC)
- 80468 (x_refsource_OSVDB, vdb-entry)
- 80456 (x_refsource_OSVDB, vdb-entry)