Lucene search
Ubuntu.comUB:CVE-2012-1419HistoryMar 21, 2012 - 12:00 a.m.
CVE-2012-1419
2012-03-2100:00:00
ubuntu.com
ubuntu.com
11
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.912
Percentile
98.9%
The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat QuickHeal)
11.00 allows remote attackers to bypass malware detection via a POSIX TAR
file with an initial [aliases] character sequence. NOTE: this may later be
SPLIT into multiple CVEs if additional information is published showing
that the error occurred independently in different TAR parser
implementations.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | clamav says “Fixed with daily.cvd 14813”, so presumably no update necessary. |
Related
prion
prion
Design/Logic Flaw
2012-03-21 10:11:00
cve
cve
CVE-2012-1419
2012-03-21 10:11:47
debiancve
debiancve
CVE-2012-1419
2012-03-21 10:11:47
cvelist
cvelist
CVE-2012-1419
2012-03-21 10:00:00
nvd
nvd
CVE-2012-1419
2012-03-21 10:11:47
openvas
openvas
FreeBSD Ports: clamav
2012-08-10 00:00:00
FreeBSD Ports: clamav
2012-08-10 00:00:00
nessus
nessus
freebsd
freebsd
clamav -- multiple vulnerabilities
2012-03-19 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.912
Percentile
98.9%
Related for UB:CVE-2012-1419