Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-qvz2-bk3f-7bch
Vulnerability ID VCID-qvz2-bk3f-7bch
Aliases CVE-2012-1419
Summary The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat QuickHeal) 11.00 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial [aliases] character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00806 https://api.first.org/data/v1/epss?cve=CVE-2012-1419
epss 0.00806 https://api.first.org/data/v1/epss?cve=CVE-2012-1419
epss 0.00806 https://api.first.org/data/v1/epss?cve=CVE-2012-1419
epss 0.00806 https://api.first.org/data/v1/epss?cve=CVE-2012-1419
epss 0.00806 https://api.first.org/data/v1/epss?cve=CVE-2012-1419
epss 0.00806 https://api.first.org/data/v1/epss?cve=CVE-2012-1419
epss 0.00806 https://api.first.org/data/v1/epss?cve=CVE-2012-1419
epss 0.00806 https://api.first.org/data/v1/epss?cve=CVE-2012-1419
epss 0.00806 https://api.first.org/data/v1/epss?cve=CVE-2012-1419
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2012-1419
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1419
668273 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=668273
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.74112
EPSS Score 0.00806
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T16:30:59.828703+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.0.0