Lucene search

[email protected]NVD:CVE-2012-1455

HistoryMar 21, 2012 - 10:11 a.m.

CVE-2012-1455

2012-03-2110:11:49

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

6.4

Confidence

Low

EPSS

0.934

Percentile

99.1%

JSON

The CAB file parser in NOD32 Antivirus 5795 and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a CAB file with a modified vMinor version field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

Affected configurations

Nvd

Node

esetnod32_antivirusMatch5795

rising-globalrising_antivirusMatch22.83.00.03

VendorProductVersionCPE
esetnod32_antivirus5795cpe:2.3:a:eset:nod32_antivirus:5795:*:*:*:*:*:*:*
rising-globalrising_antivirus22.83.00.03cpe:2.3:a:rising-global:rising_antivirus:22.83.00.03:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
eset	nod32_antivirus	5795	cpe:2.3:a:eset:nod32_antivirus:5795:::::::*
rising-global	rising_antivirus	22.83.00.03	cpe:2.3:a:rising-global:rising_antivirus:22.83.00.03:::::::*

References

www.ieee-security.org/TC/SP2012/program.html

www.securityfocus.com/archive/1/522005

www.securityfocus.com/bid/52607

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

6.4

Confidence

Low

EPSS

0.934

Percentile

99.1%

JSON

Related for NVD:CVE-2012-1455

cvelist1 cve1 prion1