New Search

Vulnerability in AhnLab V3 Internet Security 2011.01.18.00 avast! Antivirus 4.8.1351.0 and 5.0.677.0 Kaspersky Anti-Virus 7.0.0.125 ClamAV 0.96.4 Emsisoft Anti-Malware 5.1.0.1 (CVE-2012-1459)

oval:org.cisecurity:def:7924

The TAR file parser in AhnLab V3 Internet Security 2011.01.18.00 avast! Antivirus 4.8.1351.0 and 5.0.677.0 Kaspersky Anti-Virus 7.0.0.125 ClamAV 0.96.4 Emsisoft Anti-Malware 5.1.0.1 allows remote attackers to bypass malware detection via a TAR archive entry with a length field corresponding to that entire entry plus part of the header of the next entry. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Server 2012
  • Microsoft Windows Vista
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2003
  • Microsoft Windows 8
  • Microsoft Windows 7
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows 8.1
  • Microsoft Windows Server 2016
  • Microsoft Windows 10
  • Microsoft Windows XP
Class:
vulnerability
Reference(s):
  • CVE-2012-1459
Product(s):
  • AhnLab V3 Internet Security
  • Avast! AntiVirus
  • AVG Antivirus
  • ClamAV
  • Emsisoft Anti-Malware
  • Kaspersky Anti-Virus