Lucene search

[email protected]CVE-2012-1430

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-1430

2022-10-0316:15:25

CWE-264

[email protected]

web.nvd.nist.gov

cve-2012-1430

elf file parser

antivirus

bypass

malware detection

remote attackers

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.6 Medium

AI Score

Confidence

Low

0.973 High

EPSS

Percentile

99.9%

JSON

The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, nProtect Anti-Virus 2011-01-17.01, Sophos Anti-Virus 4.61.0, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via an ELF file with a \19\04\00\10 character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

Affected configurations

NVD

Node

aladdinesafeMatch7.0.17.0

bitdefenderbitdefenderMatch7.2

comodocomodo_antivirusMatch7424

f-secureanti-virusMatch9.0.16160.0

mcafeegatewayMatch2010.1c

mcafeescan_engineMatch5.400.0.1158

nprotectnprotect_antivirusMatch2011-01-17.01

rising-globalrising_antivirusMatch22.83.00.03

sophossophos_anti-virusMatch4.61.0

CPENameOperatorVersion
aladdin:esafealaddin esafeeq7.0.17.0
bitdefender:bitdefenderbitdefendereq7.2
comodo:comodo_antiviruscomodo comodo antiviruseq7424
f-secure:anti-virusf-secure anti-viruseq9.0.16160.0
mcafee:gatewaymcafee gatewayeq2010.1c
mcafee:scan_enginemcafee scan engineeq5.400.0.1158
nprotect:nprotect_antivirusnprotect nprotect antiviruseq2011-01-17.01
rising-global:rising_antivirusrising-global rising antiviruseq22.83.00.03
sophos:sophos_anti-virussophos sophos anti-viruseq4.61.0

CPE	Name	Operator	Version
aladdin:esafe	aladdin esafe	eq	7.0.17.0
bitdefender:bitdefender	bitdefender	eq	7.2
comodo:comodo_antivirus	comodo comodo antivirus	eq	7424
f-secure:anti-virus	f-secure anti-virus	eq	9.0.16160.0
mcafee:gateway	mcafee gateway	eq	2010.1c
mcafee:scan_engine	mcafee scan engine	eq	5.400.0.1158
nprotect:nprotect_antivirus	nprotect nprotect antivirus	eq	2011-01-17.01
rising-global:rising_antivirus	rising-global rising antivirus	eq	22.83.00.03
sophos:sophos_anti-virus	sophos sophos anti-virus	eq	4.61.0

References

www.ieee-security.org/TC/SP2012/program.html

www.securityfocus.com/archive/1/522005

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.6 Medium

AI Score

Confidence

Low

0.973 High

EPSS

Percentile

99.9%

JSON

Related for CVE-2012-1430

nvd1 cvelist1 prion1