This CVE name corresponds to:
| Entered | Topic |
|---|---|
| 2012-06-16 | clamav -- multiple vulnerabilities |
The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.
| Type | Candidate |
| Name | CVE-2012-1419 |
| Phase | Assigned(20120229) |
The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat QuickHeal) 11.00 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial [aliases] character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.
| Source | Reference |
|---|---|
| BUGTRAQ | 20120319 Evasion attacks expoliting file-parsing vulnerabilities in antivirus products |
| MISC | http://www.ieee-security.org/TC/SP2012/program.html |
| BID | 52572 |
| OSVDB | 80409 |
Copyright © 2005 The MITRE Corporation.
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright
information.