CVE-2012-1457 — Vulnetix

Try Vulnetix Request Demo

CVE-2012-1457 PUBLISHED CVSS 4.300000190734863 MEDIUM

The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field that exceeds the total TAR file size. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

EPSS 50.85% · 97.8th percentile

Risk Scores

CVSS v2.0

4.300000190734863

EPSS Score

50.85%

97.8th percentile

Affected Products

Vendor	Product	Versions
authentium	command_antivirus	5.2.11.5
virusbuster	virusbuster	13.6.151.0
avg	avg_anti-virus	10.0.0.1190
ikarus	ikarus_virus_utilities_t3_command_line_scanner	1.1.97.0
pc_tools	pc_tools_antivirus	7.0.3.5
aladdin	esafe	7.0.17.0
alwil	avast_antivirus	5.0.677.0, 4.8.1351.0
k7computing	antivirus	9.77.3565
anti-virus	vba32	3.12.14.2
kaspersky	kaspersky_anti-virus	7.0.0.125
eset	nod32_antivirus	5795
emsisoft	anti-malware	5.1.0.1
rising-global	rising_antivirus	22.83.00.03
n/a	n/a	n/a
avira	antivir	7.11.1.163
microsoft	security_essentials	2.0
bitdefender	bitdefender	7.2
jiangmin	jiangmin_antivirus	13.0.900
mcafee	scan_engine	5.400.0.1158
trendmicro	housecall	9.120.0.1004

…and 9 more

Timeline

Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score
Aug 31, 2023 EPSS Score
Oct 22, 2023 EPSS Score
Dec 13, 2023 EPSS Score

References

80392 vdb
openSUSE-SU-2012:0833 vendor-advisory
80406 vdb
80393 vdb
20120319 Evasion attacks expoliting file-parsing vulnerabilities in antivirus products mailing-list
80403 vdb
80389 vdb
80391 vdb
80409 vdb
80396 vdb
http://www.ieee-security.org/TC/SP2012/program.html url
MDVSA-2012:094 vendor-advisory
52610 vdb
80407 vdb
80395 vdb
multiple-av-tar-length-evasion(74293) vdb
https://nvd.nist.gov/vuln/detail/CVE-2012-1457 advisory

Open in Interactive Console →