Lucene search

[email protected]CVE-2012-1455

HistoryMar 21, 2012 - 10:11 a.m.

CVE-2012-1455

2012-03-2110:11:49

CWE-264

[email protected]

web.nvd.nist.gov

nod32 antivirus

rising antivirus

cab file parser

malware detection

bypass

cve-2012-1455

vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.6 Medium

AI Score

Confidence

Low

0.943 High

EPSS

Percentile

99.2%

JSON

The CAB file parser in NOD32 Antivirus 5795 and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via a CAB file with a modified vMinor version field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

Affected configurations

NVD

Node

esetnod32_antivirusMatch5795

rising-globalrising_antivirusMatch22.83.00.03

CPENameOperatorVersion
eset:nod32_antiviruseset nod32 antiviruseq5795
rising-global:rising_antivirusrising-global rising antiviruseq22.83.00.03

CPE	Name	Operator	Version
eset:nod32_antivirus	eset nod32 antivirus	eq	5795
rising-global:rising_antivirus	rising-global rising antivirus	eq	22.83.00.03

References

www.ieee-security.org/TC/SP2012/program.html

www.securityfocus.com/archive/1/522005

www.securityfocus.com/bid/52607

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.6 Medium

AI Score

Confidence

Low

0.943 High

EPSS

Percentile

99.2%

JSON

Related for CVE-2012-1455

cvelist1 nvd1 prion1