4.3
CVE-2012-1460
- EPSS 0.57%
- Published 21.03.2012 10:11:49
- Last modified 11.04.2025 00:51:21
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
The Gzip file parser in Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, and VBA32 3.12.14.2 allows remote attackers to bypass malware detection via a .tar.gz file with stray bytes at the end. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different Gzip parser implementations.
Data is provided by the National Vulnerability Database (NVD)
Anti-virus ≫ Vba32 Version3.12.14.2
Authentium ≫ Command Antivirus Version5.2.11.5
Cat ≫ Quick Heal Version11.00
F-prot ≫ F-prot Antivirus Version4.6.2.117
Jiangmin ≫ Jiangmin Antivirus Version13.0.900
K7computing ≫ Antivirus Version9.77.3565
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.57% | 0.676 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|