PT-2012-3251 · K7 Computing+5 · K7 Antivirus+5

Benedikt Driessen

Published

2012-03-21

Updated

2017-08-29

CVE-2012-1426

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Quick Heal versions 11.00 Command Antivirus version 5.2.11.5 F-Prot Antivirus version 4.6.2.117 K7 AntiVirus version 9.77.3565 Norman Antivirus version 6.06.12 Rising Antivirus version 22.83.00.03

Description The issue allows remote attackers to bypass malware detection via a POSIX TAR file with an initial x42x5Ax68 character sequence.

Recommendations For Quick Heal version 11.00, update to a version that fixes the TAR file parser issue. For Command Antivirus version 5.2.11.5, update to a version that fixes the TAR file parser issue. For F-Prot Antivirus version 4.6.2.117, update to a version that fixes the TAR file parser issue. For K7 AntiVirus version 9.77.3565, update to a version that fixes the TAR file parser issue. For Norman Antivirus version 6.06.12, update to a version that fixes the TAR file parser issue. For Rising Antivirus version 22.83.00.03, update to a version that fixes the TAR file parser issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2012-1426

Affected Products

Command Antivirus

F-Prot Antivirus

K7 Antivirus

Norman Antivirus

Quick Heal

Rising Antivirus

PT-2012-3251 · K7 Computing+5 · K7 Antivirus+5

CVE-2012-1426

Weakness Enumeration

Related Identifiers

Affected Products

References · 8