CVE-2012-1461

Name of the Vulnerable Software and Affected Versions AVG Anti-Virus version 10.0.0.1190 Bitdefender version 7.2 Command Antivirus version 5.2.11.5 Emsisoft Anti-Malware version 5.1.0.1 F-Secure Anti-Virus version 9.0.16160.0 Fortinet Antivirus version 4.2.254.0 Ikarus Virus Utilities T3 Command Line Scanner version 1.1.97.0 Jiangmin Antivirus version 13.0.900 K7 AntiVirus version 9.77.3565 Kaspersky Anti-Virus version 7.0.0.125 McAfee Anti-Virus Scanning Engine version 5.400.0.1158 McAfee Gateway version 2010.1C NOD32 Antivirus version 5795 Norman Antivirus version 6.06.12 Rising Antivirus version 22.83.00.03 Sophos Anti-Virus version 4.61.0 Symantec Endpoint Protection 11 with AVEngine version 20101.3.0.103 Trend Micro AntiVirus version 9.120.0.1004 Trend Micro HouseCall version 9.120.0.1004 VBA32 version 3.12.14.2

Description The Gzip file parser in the listed antivirus software allows remote attackers to bypass malware detection via a .tar.gz file with multiple compressed streams.

Recommendations For AVG Anti-Virus version 10.0.0.1190, update to a newer version that contains a fix for this issue. For Bitdefender version 7.2, update to a newer version that contains a fix for this issue. For Command Antivirus version 5.2.11.5, update to a newer version that contains a fix for this issue. For Emsisoft Anti-Malware version 5.1.0.1, update to a newer version that contains a fix for this issue. For F-Secure Anti-Virus version 9.0.16160.0, update to a newer version that contains a fix for this issue. For Fortinet Antivirus version 4.2.254.0, update to a newer version that contains a fix for this issue. For Ikarus Virus Utilities T3 Command Line Scanner version 1.1.97.0, update to a newer version that contains a fix for this issue. For Jiangmin Antivirus version 13.0.900, update to a newer version that contains a fix for this issue. For K7 AntiVirus version 9.77.3565, update to a newer version that contains a fix for this issue. For Kaspersky Anti-Virus version 7.0.0.125, update to a newer version that contains a fix for this issue. For McAfee Anti-Virus Scanning Engine version 5.400.0.1158, update to a newer version that contains a fix for this issue. For McAfee Gateway version 2010.1C, update to a newer version that contains a fix for this issue. For NOD32 Antivirus version 5795, update to a newer version that contains a fix for this issue. For Norman Antivirus version 6.06.12, update to a newer version that contains a fix for this issue. For Rising Antivirus version 22.83.00.03, update to a newer version that contains a fix for this issue. For Sophos Anti-Virus version 4.61.0, update to a newer version that contains a fix for this issue. For Symantec Endpoint Protection 11 with AVEngine version 20101.3.0.103, update to a newer version that contains a fix for this issue. For Trend Micro AntiVirus version 9.120.0.1004, update to a newer version that contains a fix for this issue. For Trend Micro HouseCall version 9.120.0.1004, update to a newer version that contains a fix for this issue. For VBA32 version 3.12.14.2, update to a newer version that contains a fix for this issue.