Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-k448-kp97-cbd8
SummaryThe TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field that exceeds the total TAR file size. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.
Aliases
0
alias CVE-2012-1457
1
alias PYSEC-2012-25
Fixed_packages
0
url pkg:deb/debian/clamav@0.97.5%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/clamav@0.97.5%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.97.5%252Bdfsg-1%3Fdistro=trixie
1
url pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1?distro=trixie
purl pkg:deb/debian/clamav@0.103.10%2Bdfsg-0%2Bdeb11u1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-81rs-8fs7-3yfp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@0.103.10%252Bdfsg-0%252Bdeb11u1%3Fdistro=trixie
2
url pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2?distro=trixie
purl pkg:deb/debian/clamav@1.4.3%2Bdfsg-1~deb12u2?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-81rs-8fs7-3yfp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.3%252Bdfsg-1~deb12u2%3Fdistro=trixie
3
url pkg:deb/debian/clamav@1.4.3%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/clamav@1.4.3%2Bdfsg-1?distro=trixie
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-81rs-8fs7-3yfp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.3%252Bdfsg-1%3Fdistro=trixie
4
url pkg:deb/debian/clamav@1.4.4%2Bdfsg-1?distro=trixie
purl pkg:deb/debian/clamav@1.4.4%2Bdfsg-1?distro=trixie
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/clamav@1.4.4%252Bdfsg-1%3Fdistro=trixie
Affected_packages
References
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00002.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00002.html
1
reference_url http://osvdb.org/80389
reference_id
reference_type
scores
url http://osvdb.org/80389
2
reference_url http://osvdb.org/80391
reference_id
reference_type
scores
url http://osvdb.org/80391
3
reference_url http://osvdb.org/80392
reference_id
reference_type
scores
url http://osvdb.org/80392
4
reference_url http://osvdb.org/80393
reference_id
reference_type
scores
url http://osvdb.org/80393
5
reference_url http://osvdb.org/80395
reference_id
reference_type
scores
url http://osvdb.org/80395
6
reference_url http://osvdb.org/80396
reference_id
reference_type
scores
url http://osvdb.org/80396
7
reference_url http://osvdb.org/80403
reference_id
reference_type
scores
url http://osvdb.org/80403
8
reference_url http://osvdb.org/80406
reference_id
reference_type
scores
url http://osvdb.org/80406
9
reference_url http://osvdb.org/80407
reference_id
reference_type
scores
url http://osvdb.org/80407
10
reference_url http://osvdb.org/80409
reference_id
reference_type
scores
url http://osvdb.org/80409
11
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-1457
reference_id
reference_type
scores
0
value 0.50848
scoring_system epss
scoring_elements 0.97907
published_at 2026-05-29T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-1457
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1457
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1457
13
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/74293
reference_id
reference_type
scores
url https://exchange.xforce.ibmcloud.com/vulnerabilities/74293
14
reference_url http://www.ieee-security.org/TC/SP2012/program.html
reference_id
reference_type
scores
url http://www.ieee-security.org/TC/SP2012/program.html
15
reference_url http://www.mandriva.com/security/advisories?name=MDVSA-2012:094
reference_id
reference_type
scores
url http://www.mandriva.com/security/advisories?name=MDVSA-2012:094
16
reference_url http://www.securityfocus.com/archive/1/522005
reference_id
reference_type
scores
url http://www.securityfocus.com/archive/1/522005
17
reference_url http://www.securityfocus.com/bid/52610
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/52610
18
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=668273
reference_id 668273
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=668273
19
reference_url https://usn.ubuntu.com/1482-1/
reference_id USN-1482-1
reference_type
scores
url https://usn.ubuntu.com/1482-1/
Weaknesses
Exploits
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-k448-kp97-cbd8