CVE-2012-1425

Name of the Vulnerable Software and Affected Versions Avira AntiVir version 7.11.1.163 Antiy Labs AVL SDK version 2.0.3.7 Quick Heal version 11.00 Emsisoft Anti-Malware version 5.1.0.1 Fortinet Antivirus version 4.2.254.0 Ikarus Virus Utilities T3 Command Line Scanner version 1.1.97.0 Jiangmin Antivirus version 13.0.900 Kaspersky Anti-Virus version 7.0.0.125 McAfee Anti-Virus Scanning Engine version 5.400.0.1158 McAfee Gateway version 2010.1C NOD32 Antivirus version 5795 Norman Antivirus version 6.06.12 PC Tools AntiVirus version 7.0.3.5 Symantec Endpoint Protection 11 with AVEngine version 20101.3.0.103 Trend Micro AntiVirus version 9.120.0.1004 Trend Micro HouseCall version 9.120.0.1004

Description The TAR file parser in the listed antivirus software allows remote attackers to bypass malware detection via a POSIX TAR file with an initial x50x4Bx03x04 character sequence.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.