Lucene search

[email protected]CVE-2012-1463

HistoryMar 21, 2012 - 10:11 a.m.

CVE-2012-1463

2012-03-2110:11:49

CWE-264

[email protected]

web.nvd.nist.gov

cve-2012-1463

ahnlab

bitdefender

quick heal

command antivirus

comodo antivirus

esafe

f-prot antivirus

f-secure anti-virus

mcafee anti-virus

norman antivirus

nprotect anti-virus

panda antivirus

remote attack

malware detection bypass

endianness field

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.7 Medium

AI Score

Confidence

Low

0.973 High

EPSS

Percentile

99.9%

JSON

The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, Norman Antivirus 6.06.12, nProtect Anti-Virus 2011-01-17.01, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified endianness field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

Affected configurations

NVD

Node

ahnlabv3_internet_securityMatch2011.01.18.00

aladdinesafeMatch7.0.17.0

authentiumcommand_antivirusMatch5.2.11.5

bitdefenderbitdefenderMatch7.2

catquick_healMatch11.00

comodocomodo_antivirusMatch7424

f-protf-prot_antivirusMatch4.6.2.117

f-securef-secure_anti-virusMatch9.0.16160.0

mcafeescan_engineMatch5.400.0.1158

normannorman_antivirus_\&_antispywareMatch6.06.12

nprotectnprotect_antivirusMatch2011-01-17.01

pandasecuritypanda_antivirusMatch10.0.2.7

CPENameOperatorVersion
ahnlab:v3_internet_securityahnlab v3 internet securityeq2011.01.18.00
aladdin:esafealaddin esafeeq7.0.17.0
authentium:command_antivirusauthentium command antiviruseq5.2.11.5
bitdefender:bitdefenderbitdefendereq7.2
cat:quick_healcat quick healeq11.00
comodo:comodo_antiviruscomodo comodo antiviruseq7424
f-prot:f-prot_antivirusf-prot f-prot antiviruseq4.6.2.117
f-secure:f-secure_anti-virusf-secure f-secure anti-viruseq9.0.16160.0
mcafee:scan_enginemcafee scan engineeq5.400.0.1158
norman:norman_antivirus_\&_antispywarenorman norman antivirus & antispywareeq6.06.12

CPE	Name	Operator	Version
ahnlab:v3_internet_security	ahnlab v3 internet security	eq	2011.01.18.00
aladdin:esafe	aladdin esafe	eq	7.0.17.0
authentium:command_antivirus	authentium command antivirus	eq	5.2.11.5
bitdefender:bitdefender	bitdefender	eq	7.2
cat:quick_heal	cat quick heal	eq	11.00
comodo:comodo_antivirus	comodo comodo antivirus	eq	7424
f-prot:f-prot_antivirus	f-prot f-prot antivirus	eq	4.6.2.117
f-secure:f-secure_anti-virus	f-secure f-secure anti-virus	eq	9.0.16160.0
mcafee:scan_engine	mcafee scan engine	eq	5.400.0.1158
norman:norman_antivirus_\&_antispyware	norman norman antivirus & antispyware	eq	6.06.12

Rows per page:

1-10 of 121

References

osvdb.org/80426

osvdb.org/80433

www.ieee-security.org/TC/SP2012/program.html

www.securityfocus.com/archive/1/522005

www.securityfocus.com/bid/52614

exchange.xforce.ibmcloud.com/vulnerabilities/74311

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.7 Medium

AI Score

Confidence

Low

0.973 High

EPSS

Percentile

99.9%

JSON

Related for CVE-2012-1463

nvd1 cvelist1 prion1