Design/Logic Flaw

2012-03-2110:11:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

0.951 High

EPSS

Percentile

99.3%

JSON

The ELF file parser in eSafe 7.0.17.0, Prevx 3.0, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified abiversion field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

CPENameOperatorVersion
esafeeq7.0.17.0
fortinet_antiviruseq4.2.254.0
panda_antiviruseq10.0.2.7
prevxeq3.0

Name	Operator	Version
esafe	eq	7.0.17.0
fortinet_antivirus	eq	4.2.254.0
panda_antivirus	eq	10.0.2.7
prevx	eq	3.0

References

osvdb.org/80429

www.ieee-security.org/TC/SP2012/program.html

www.securityfocus.com/archive/1/522005

www.securityfocus.com/bid/52604