CVE-2012-1448

EPSS 8.34%
Published 21.03.2012 10:11:48
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

The CAB file parser in Quick Heal (aka Cat QuickHeal) 11.00, Trend Micro AntiVirus 9.120.0.1004, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Trend Micro HouseCall 9.120.0.1004, and Emsisoft Anti-Malware 5.1.0.1 allows remote attackers to bypass malware detection via a CAB file with a modified cbCabinet field.  NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Cat ≫ Quick Heal Version11.00

Emsisoft ≫ Anti-malware Version5.1.0.1

Ikarus ≫ Ikarus Virus Utilities T3 Command Line Scanner Version1.1.97.0

Trendmicro ≫ Housecall Version9.120.0.1004

Trendmicro ≫ Trend Micro Antivirus Version9.120.0.1004

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	8.34%	0.92

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

http://www.ieee-security.org/TC/SP2012/program.html

http://www.securityfocus.com/archive/1/522005

http://www.securityfocus.com/bid/52603

https://nvd.nist.gov/vuln/detail/CVE-2012-1448

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-1448

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-1448

EUVD