Lucene search

K
cve[email protected]CVE-2012-1452
HistoryMar 21, 2012 - 10:11 a.m.

CVE-2012-1452

2012-03-2110:11:48
CWE-264
web.nvd.nist.gov
16
cab file parser
emsisoft anti-malware
ikarus virus utilities
quick heal
remote attackers
malware detection
cve-2012-1452
vulnerability
security

6.7 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.965 High

EPSS

Percentile

99.6%

The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Quick Heal (aka Cat QuickHeal) 11.00 allows remote attackers to bypass malware detection via a CAB file with a modified reserved1 field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

Affected configurations

NVD
Node
catquick_healMatch11.00
OR
emsisoftanti-malwareMatch5.1.0.1
OR
ikarusikarus_virus_utilities_t3_command_line_scannerMatch1.1.97.0

6.7 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.965 High

EPSS

Percentile

99.6%

Related for CVE-2012-1452