4.3
CVE-2012-1446
- EPSS 2.54%
- Veröffentlicht 21.03.2012 10:11:48
- Zuletzt bearbeitet 11.04.2025 00:51:21
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Norman Antivirus 6.06.12, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, McAfee Gateway (formerly Webwasher) 2010.1C, Sophos Anti-Virus 4.61.0, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL SDK 2.0.3.7, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified encoding field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ca ≫ Etrust Vet Antivirus Version36.1.8511
Cat ≫ Quick Heal Version11.00
Fortinet ≫ Fortinet Antivirus Version4.2.254.0
Kaspersky ≫ Kaspersky Anti-virus Version7.0.0.125
Mcafee ≫ Scan Engine Version5.400.0.1158
Pandasecurity ≫ Panda Antivirus Version10.0.2.7
Pc Tools ≫ Pc Tools Antivirus Version7.0.3.5
Rising-global ≫ Rising Antivirus Version22.83.00.03
Sophos ≫ Sophos Anti-virus Version4.61.0
Symantec ≫ Endpoint Protection Version11.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.54% | 0.848 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|