1. Home
  2. CVE Database
  3. CVE-2012-1426
MEDIUM · 4.3

CVE-2012-1426

The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, K7 AntiVirus 9.77.3565, Norman Antivirus 6.06.12, and Rising Antivirus 22.83.00.03 ...

Vulnerability Description

The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, K7 AntiVirus 9.77.3565, Norman Antivirus 6.06.12, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \42\5A\68 character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N
Confidentiality
NONE
Integrity
PARTIAL
Availability
NONE

Affected Products

VendorProductVersions
AuthentiumCommand Antivirus5.2.11.5
CatQuick Heal11.00
F-ProtF-Prot Antivirus4.6.2.117
K7ComputingAntivirus9.77.3565
NormanNorman Antivirus \& Antispyware6.06.12
Rising-GlobalRising Antivirus22.83.00.03

Related Weaknesses (CWE)

CWE-264

References

FAQ

What is CVE-2012-1426?

CVE-2012-1426 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, K7 AntiVirus 9.77.3565, Norman Antivirus 6.06.12, and Rising Antivirus 22.83.00.03 ...

How severe is CVE-2012-1426?

CVE-2012-1426 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2012-1426?

Check the references section above for vendor advisories and patch information. Affected products include: Authentium Command Antivirus, Cat Quick Heal, F-Prot F-Prot Antivirus, K7Computing Antivirus, Norman Norman Antivirus \& Antispyware.