漏洞标题
N/A
漏洞描述信息
在ClamAV 0.96.4和Quick Heal(aka Cat QuickHeal)11.00中, Tar 文件解析器允许远程攻击者通过初始[别名]字符序列绕过恶意软件检测。注意:如果发布额外的信息,表明不同 Tar 解析器实现中的错误独立发生,此问题可能会被拆分成多个 CVE。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat QuickHeal) 11.00 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial [aliases] character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
多个杀毒产品TAR文件权限许可和访问控制漏洞
漏洞描述信息
ClamAV 0.96.4版本和Quick Heal(也称Cat QuickHeal)11.00版本中的TAR文件解析器中存在漏洞。远程攻击者可利用该漏洞借助有初始的[aliases]字符序列的POSIX TAR文件,绕过恶意软件检测。
CVSS信息
N/A
漏洞类别
授权问题