Name of the Vulnerable Software and Affected Versions AVG Anti-Virus version 10.0.0.1190 Bitdefender version 7.2 Command Antivirus version 5.2.11.5 Emsisoft Anti-Malware version 5.1.0.1 F-Secure Anti-Virus version 9.0.16160.0 Fortinet Antivirus version 4.2.254.0 Ikarus Virus Utilities T3 Command Line Scanner version 1.1.97.0 Jiangmin Antivirus version 13.0.900 K7 AntiVirus version 9.77.3565 Kaspersky Anti-Virus version 7.0.0.125 McAfee Anti-Virus Scanning Engine version 5.400.0.1158 McAfee Gateway (formerly Webwasher) version 2010.1C NOD32 Antivirus version 5795 Norman Antivirus version 6.06.12 Rising Antivirus version 22.83.00.03 Sophos Anti-Virus version 4.61.0 Symantec Endpoint Protection 11 with AVEngine version 20101.3.0.103 Trend Micro AntiVirus version 9.120.0.1004 Trend Micro HouseCall version 9.120.0.1004 VBA32 version 3.12.14.2

Description The Gzip file parser in the affected software allows remote attackers to bypass malware detection via a .tar.gz file with multiple compressed streams.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.