Info

Disclosure

Mar 19, 2012

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

AVG Anti-Virus contains a flaw related to the anti-virus / anti-malware scanning functionality. This may allow a context-dependent attacker to use a specially crafted TAR file in order to bypass the scanning functionality, allowing for the delivery of malware.

Classification

Location: Context Dependent
Attack Type: Input Manipulation
Impact: Loss of Integrity
Disclosure: Uncoordinated Disclosure
OSVDB: Security Software

Solution

OSVDB is not aware of a solution for this vulnerability.

Products

AVG Technologies

AVG Anti-Virus

10.0.0.1190

References

Security Tracker: 1026840
CVE ID: 2012-1456 (see also: NVD) 2012-1457 (see also: NVD) 2012-1459 (see also: NVD)
Mail List Post: http://seclists.org/bugtraq/2012/Mar/88
Vendor URL: http://www.avg.com/us-en/homepage

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/80386