- Description
- The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, F-Prot Antivirus 4.6.2.117, K7 AntiVirus 9.77.3565, Norman Antivirus 6.06.12, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \42\5A\68 character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
- nvd@nist.gov
- CWE-264
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:authentium:command_antivirus:5.2.11.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "192DFD98-11AA-4E7A-A1CB-53FC06FEB20F"
},
{
"criteria": "cpe:2.3:a:cat:quick_heal:11.00:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "343D3F40-E028-4AEE-82A4-0A17C1D1ED13"
},
{
"criteria": "cpe:2.3:a:f-prot:f-prot_antivirus:4.6.2.117:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "961708EB-3124-4147-A36D-BAD9241D0C88"
},
{
"criteria": "cpe:2.3:a:k7computing:antivirus:9.77.3565:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B27BD224-CB70-43D2-8B0D-9F229A646B82"
},
{
"criteria": "cpe:2.3:a:norman:norman_antivirus_\\&_antispyware:6.06.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "81D01633-1000-425D-9026-59C50734956A"
},
{
"criteria": "cpe:2.3:a:rising-global:rising_antivirus:22.83.00.03:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EF8ADA91-4042-4E1B-9F14-78023F24B137"
}
],
"operator": "OR"
}
]
}
]