← Back

CVE-2012-1424

nvd nist
Published: Mar 21, 2012Modified: Apr 29, 2026

JSON object

Loading...
4.3
Vector
AV:N/AC:M/Au:N/C:N/I:P/A:N
Exploitability: 8.6 / Impact: 2.9
Source: NVD

Description

The TAR file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat QuickHeal) 11.00, Jiangmin Antivirus 13.0.900, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a POSIX TAR file with a \19\04\00\10 character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Affected (6)

Products: Antiy: Avl Sdk · Cat: Quick Heal · Jiangmin: Jiangmin Antivirus · +3 more
Show all products
Antiy: Avl Sdk · Cat: Quick Heal · Jiangmin: Jiangmin Antivirus · Norman: Norman Antivirus & Antispyware · Pc Tools: Pc Tools Antivirus · Sophos: Sophos Anti Virus
Antiy
1 product
Avl Sdk
Cat
1 product
Quick Heal
Jiangmin
1 product
Jiangmin Antivirus
Norman
1 product
Norman Antivirus & Antispyware
Pc Tools
1 product
Pc Tools Antivirus
Sophos
1 product
Sophos Anti Virus
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Avl Sdk
Version 2.0.3.7
Quick Heal
Version 11.00
Jiangmin Antivirus
Version 13.0.900
Norman Antivirus & Antispyware
Version 6.06.12
Pc Tools Antivirus
Version 7.0.3.5
Sophos Anti Virus
Version 4.61.0

Related CWEs

CWE-264
CWE-264

References (12)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.