Remote Code Execution Vulnerability in Multiple Antivirus Products
CVE-2012-1457

Currently unrated

Key Information:

Vendor: Bitdefender
Status: Bitdefender; Avast Antivirus; Norman Antivirus \& Antispyware; Clamav
Vendor: CVE Published:; 21 March 2012

🔔 Create Bitdefender Vulnerability Alert

What is CVE-2012-1457?

This vulnerability affects various antivirus products due to improper handling of TAR file entries, allowing remote attackers to bypass malware detection by crafting TAR archives with manipulated length fields. The flaw enables malicious actors to exploit the system without being detected, which emphasizes the importance of using up-to-date antivirus software and staying vigilant against such threats.

References

http://lists.opensuse.org/opensuse-security-announce/2012...

vendor-advisoryx_refsource_SUSE

http://osvdb.org/80406

vdb-entryx_refsource_OSVDB

http://osvdb.org/80393

vdb-entryx_refsource_OSVDB

EPSS Score

86% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 21, 2012
Vulnerability Reserved
Feb 29, 2012