4.3
CVE-2012-1446
- EPSS 99.73%
- Veröffentlicht 21.03.2012 10:11:48
- Zuletzt bearbeitet 16.06.2026 23:39:32
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Norman Antivirus 6.06.12, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, McAfee Gateway (formerly Webwasher) 2010.1C, Sophos Anti-Virus 4.61.0, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL SDK 2.0.3.7, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified encoding field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ca ≫ Etrust Vet Antivirus Version36.1.8511
Cat ≫ Quick Heal Version11.00
Fortinet ≫ Fortinet Antivirus Version4.2.254.0
Kaspersky ≫ Kaspersky Anti-virus Version7.0.0.125
Mcafee ≫ Scan Engine Version5.400.0.1158
Pandasecurity ≫ Panda Antivirus Version10.0.2.7
Pc Tools ≫ Pc Tools Antivirus Version7.0.3.5
Rising-global ≫ Rising Antivirus Version22.83.00.03
Sophos ≫ Sophos Anti-virus Version4.61.0
Symantec ≫ Endpoint Protection Version11.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 99.73% | 1 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
http://www.ieee-security.org/TC/SP2012/program.html
http://www.securityfocus.com/archive/1/522005
http://osvdb.org/80426
http://osvdb.org/80427
http://osvdb.org/80428
http://osvdb.org/80430
http://osvdb.org/80431
http://www.securityfocus.com/bid/52600