Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.4.2012.0858.1
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2012:0858-1)
Summary:The remote host is missing an update for the 'clamav' package(s) announced via the SUSE-SU-2012:0858-1 advisory.
Description:Summary:
The remote host is missing an update for the 'clamav' package(s) announced via the SUSE-SU-2012:0858-1 advisory.

Vulnerability Insight:
The following issue has been fixed:

* Viruses contained in specially crafted tar or CHM files could have evaded detection by clamav (CVE-2012-1457,
CVE-2012-1458, CVE-2012-1459).

Security Issue references:

* CVE-2012-1457
>
* CVE-2012-1458
>
* CVE-2012-1459
>

Affected Software/OS:
'clamav' package(s) on SUSE Linux Enterprise Server 11 SP2, SUSE Linux Enterprise Server 11 SP1, SUSE Linux Enterprise Server 10 SP4, SUSE Linux Enterprise Desktop 11 SP2, SUSE Linux Enterprise Desktop 11 SP1, SUSE Linux Enterprise Desktop 10 SP4, SLE SDK 10 SP4

Solution:
Please install the updated package(s).

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2012-1457
BugTraq ID: 52610
http://www.securityfocus.com/bid/52610
Bugtraq: 20120319 Evasion attacks expoliting file-parsing vulnerabilities in antivirus products (Google Search)
http://www.securityfocus.com/archive/1/522005
http://www.mandriva.com/security/advisories?name=MDVSA-2012:094
http://www.ieee-security.org/TC/SP2012/program.html
http://osvdb.org/80389
http://osvdb.org/80391
http://osvdb.org/80392
http://osvdb.org/80393
http://osvdb.org/80395
http://osvdb.org/80396
http://osvdb.org/80403
http://osvdb.org/80406
http://osvdb.org/80407
http://osvdb.org/80409
SuSE Security Announcement: openSUSE-SU-2012:0833 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00002.html
XForce ISS Database: multiple-av-tar-length-evasion(74293)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74293
Common Vulnerability Exposure (CVE) ID: CVE-2012-1458
BugTraq ID: 52611
http://www.securityfocus.com/bid/52611
http://osvdb.org/80473
http://osvdb.org/80474
XForce ISS Database: multiple-av-chm-header-evasion(74301)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74301
Common Vulnerability Exposure (CVE) ID: CVE-2012-1459
BugTraq ID: 52623
http://www.securityfocus.com/bid/52623
http://osvdb.org/80390
XForce ISS Database: multiple-av-tar-header-evasion(74302)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74302
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.