4.3
CVE-2012-1453
- EPSS 78.48%
- Published 21.03.2012 10:11:48
- Last modified 11.04.2025 00:51:21
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
The CAB file parser in Dr.Web 5.0.2.03300, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Sophos Anti-Virus 4.61.0, Trend Micro AntiVirus 9.120.0.1004, McAfee Gateway (formerly Webwasher) 2010.1C, Emsisoft Anti-Malware 5.1.0.1, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL SDK 2.0.3.7, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, Rising Antivirus 22.83.00.03, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via a CAB file with a modified coffFiles field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.
Data is provided by the National Vulnerability Database (NVD)
Ca ≫ Etrust Vet Antivirus Version36.1.8511
Drweb ≫ Dr.Web Antivirus Version5.0.2.03300
Emsisoft ≫ Anti-malware Version5.1.0.1
Fortinet ≫ Fortinet Antivirus Version4.2.254.0
Ikarus ≫ Ikarus Virus Utilities T3 Command Line Scanner Version1.1.97.0
Kaspersky ≫ Kaspersky Anti-virus Version7.0.0.125
Microsoft ≫ Security Essentials Version2.0
Pandasecurity ≫ Panda Antivirus Version10.0.2.7
Rising-global ≫ Rising Antivirus Version22.83.00.03
Sophos ≫ Sophos Anti-virus Version4.61.0
Trendmicro ≫ Housecall Version9.120.0.1004
Trendmicro ≫ Trend Micro Antivirus Version9.120.0.1004
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 78.48% | 0.99 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|