CVE-2012-1421

CWE-2643 documents3 sources

Severity

4.3MEDIUM

EPSS

0.2%

top 59.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

CAT Quick Heal Norman Norman Antivirus \& Antispyware Rising-global Rising Antivirus +1 more

Timeline

PublishedMar 21

Latest updateMay 17

Description

The TAR file parser in Quick Heal (aka Cat QuickHeal) 11.00, Norman Antivirus 6.06.12, Rising Antivirus 22.83.00.03, and AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial MSCF character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages4 packages

▶NVDcat/quick_heal11.00

▶NVDsymantec/endpoint_protection11.0

▶NVDrising-global/rising_antivirus22.83.00.03

▶NVDnorman/norman_antivirus_\&_antispyware6.06.12

🔴Vulnerability Details

GHSA

GHSA-7hrh-q6qr-xpfr: The TAR file parser in Quick Heal (aka Cat QuickHeal) 11↗2022-05-17

▶

CVEList

CVE-2012-1421: The TAR file parser in Quick Heal (aka Cat QuickHeal) 11↗2012-03-21

▶