Lucene search

[email protected]CVE-2012-1441

HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-1441

2022-10-0316:15:26

CWE-264

[email protected]

web.nvd.nist.gov

microsoft

exe

file

parser

esafe

prevx

remote attackers

bypass

malware

detection

cve-2012-1441

6.6 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.929 High

EPSS

Percentile

99.0%

JSON

The Microsoft EXE file parser in eSafe 7.0.17.0 and Prevx 3.0 allows remote attackers to bypass malware detection via an EXE file with a modified value in any of several e_ fields. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different EXE parser implementations.

Affected configurations

NVD

Node

aladdinesafeMatch7.0.17.0

prevxprevxMatch3.0

CPENameOperatorVersion
aladdin:esafealaddin esafeeq7.0.17.0
prevx:prevxprevxeq3.0

CPE	Name	Operator	Version
aladdin:esafe	aladdin esafe	eq	7.0.17.0
prevx:prevx	prevx	eq	3.0

References

www.ieee-security.org/TC/SP2012/program.html

www.securityfocus.com/archive/1/522005

6.6 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.929 High

EPSS

Percentile

99.0%

JSON

Related for CVE-2012-1441

cvelist1 prion1 nvd1