CVE-2012-1424

The TAR file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat QuickHeal) 11.00, Jiangmin Antivirus 13.0.900, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a POSIX TAR file with a \19\04\00\10 character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:N/I:P/A:N
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 99%
VendorProductVersion
antiyavl_sdk
2.0.3.7
catquick_heal
11.00
jiangminjiangmin_antivirus
13.0.900
normannorman_antivirus_\&_antispyware
6.06.12
pc_toolspc_tools_antivirus
7.0.3.5
sophossophos_anti-virus
4.61.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration