CVE-2012-1459

EPSS 79.55% · P99 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-1459

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The TAR file parser in AhnLab V3 Internet Security 2011.01.18.00, Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, Fortinet Antivirus 4.2.254.0, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, nProtect Anti-Virus 2011-01-17.01, Panda Antivirus 10.0.2.7, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, Sophos Anti-Virus 4.61.0, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field corresponding to that entire entry, plus part of the header of the next entry. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

多个杀毒产品TAR文件权限许可和访问控制漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AhnLab V3 Internet Security 2011.01.18.00版本，Avira AntiVir 7.11.1.163版本，Antiy Labs AVL SDK 2.0.3.7版本，avast! Antivirus 4.8.1351.0和5.0.677.0版本，AVG Anti-Virus 10.0.0.1190版本，Bitdefender 7.2版本，Quick Heal (也称Cat QuickHeal) 11.00版本，ClamAV 0.96.4版本，Command Antivir

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-1459

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-1459

请登录查看更多情报信息。

http://www.ieee-security.org/TC/SP2012/program.htmlx_refsource_MISC
http://osvdb.org/80390vdb-entryx_refsource_OSVDB
http://osvdb.org/80403vdb-entryx_refsource_OSVDB
http://osvdb.org/80409vdb-entryx_refsource_OSVDB
http://osvdb.org/80396vdb-entryx_refsource_OSVDB
🔗 http://osvdb.org/80395vdb-entryx_refsource_OSVDB
http://osvdb.org/80406vdb-entryx_refsource_OSVDB
http://osvdb.org/80407vdb-entryx_refsource_OSVDB
http://osvdb.org/80389vdb-entryx_refsource_OSVDB
http://osvdb.org/80392vdb-entryx_refsource_OSVDB
http://osvdb.org/80391vdb-entryx_refsource_OSVDB
http://osvdb.org/80393vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/52623vdb-entryx_refsource_BID
http://www.mandriva.com/security/advisories?name=MDVSA-2012:094vendor-advisoryx_refsource_MANDRIVA
http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00002.htmlvendor-advisoryx_refsource_SUSE
https://exchange.xforce.ibmcloud.com/vulnerabilities/74302vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/522005mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2012-1459

Same Patch Batch · n/a · 2012-03-21 · 45 CVEs total

CVE-2012-1451		多个杀毒产品CAB文件权限许可和访问控制漏洞
CVE-2012-1454		多个杀毒产品ELF文件权限许可和访问控制漏洞
CVE-2012-1453		多个杀毒产品CAB文件权限许可和访问控制漏洞
CVE-2012-1455		多个杀毒产品CAB文件权限许可和访问控制漏洞
CVE-2012-1458		多个杀毒产品CHM文件权限许可和访问控制漏洞
CVE-2012-1460		多个杀毒产品.tar.gz文件权限许可和访问控制漏洞
CVE-2012-1461		多个杀毒产品.tar.gz文件权限许可和访问控制漏洞
CVE-2012-1462		多个杀毒产品ZIP文件权限许可和访问控制漏洞
CVE-2012-1463		多个杀毒软件产品ELF文件权限许可和访问控制漏洞
CVE-2012-1457		多个杀毒产品TAR文件权限许可和访问控制漏洞
CVE-2012-1452		多个杀毒产品CAB文件权限许可和访问控制漏洞
CVE-2012-1450		多个杀毒产品CAB文件权限许可和访问控制漏洞
CVE-2012-1449		多个杀毒产品CAB文件权限许可和访问控制漏洞
CVE-2012-1448		多个杀毒产品CAB文件权限许可和访问控制漏洞
CVE-2012-1447		多个杀毒产品ELF文件权限许可和访问控制漏洞
CVE-2012-1446		多个杀毒产品ELF文件权限许可和访问控制漏洞
CVE-2012-1445		多个杀毒产品ELF文件权限许可和访问控制漏洞
CVE-2012-1444		多个杀毒产品ELF文件权限许可和访问控制漏洞
CVE-2012-1443		多个杀毒产品RAR文件权限许可和访问控制漏洞
CVE-2012-1442		多个杀毒产品ELF文件权限许可和访问控制漏洞

Showing top 20 of 45 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2012-1459

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2012-1459

I. Basic Information for CVE-2012-1459

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2012-1459

III. Intelligence Information for CVE-2012-1459

Same Patch Batch · n/a · 2012-03-21 · 45 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2012-1459

Leave a comment