CVE-2020-9362
N/A
N/A
Summary
The Quick Heal AV parsing engine (November 2019) allows virus-detection bypass via a crafted GPFLAG in a ZIP archive. This affects Total Security, Home Security, Total Security Multi-Device, Internet Security, Total Security for Mac, AntiVirus Pro, AntiVirus for Server, and Total Security for Android.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://blog.zoller.lu/p/from-low-hanging-fruit-department_24.html
- http://packetstormsecurity.com/files/156580/QuickHeal-Generic-Malformed-Archive-Bypass.html
- https://blog.zoller.lu/p/tzo-20-2020-quickheal-malformed-archive.html
- http://seclists.org/fulldisclosure/2020/Mar/14
References
- https://blog.zoller.lu/p/from-low-hanging-fruit-department_24.html
- http://packetstormsecurity.com/files/156580/QuickHeal-Generic-Malformed-Archive-Bypass.html
- https://blog.zoller.lu/p/tzo-20-2020-quickheal-malformed-archive.html
- http://seclists.org/fulldisclosure/2020/Mar/14
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.