CVE-2012-1460

The Gzip file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, and VBA32 3.12.14.2 allows remote attackers to bypass malware detection via a .tar.gz file with stray bytes at the end. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different Gzip parser implementations.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 72%
VendorProductVersion
aladdinesafe
7.0.17.0
anti-virusvba32
3.12.14.2
antiyavl_sdk
2.0.3.7
authentiumcommand_antivirus
5.2.11.5
catquick_heal
11.00
f-protf-prot_antivirus
4.6.2.117
jiangminjiangmin_antivirus
13.0.900
k7computingantivirus
9.77.3565
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.ieee-security.org/TC/SP2012/program.html
http://www.securityfocus.com/archive/1/522005
http://www.securityfocus.com/bid/52629
https://exchange.xforce.ibmcloud.com/vulnerabilities/74308
http://www.ieee-security.org/TC/SP2012/program.html
http://www.securityfocus.com/archive/1/522005
http://www.securityfocus.com/bid/52629
https://exchange.xforce.ibmcloud.com/vulnerabilities/74308