CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
Confidence
Low
EPSS
Percentile
99.9%
The ELF file parser in eSafe 7.0.17.0, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified padding field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.
Vendor | Product | Version | CPE |
---|---|---|---|
aladdin | esafe | 7.0.17.0 | cpe:2.3:a:aladdin:esafe:7.0.17.0:*:*:*:*:*:*:* |
fortinet | fortinet_antivirus | 4.2.254.0 | cpe:2.3:a:fortinet:fortinet_antivirus:4.2.254.0:*:*:*:*:*:*:* |
pandasecurity | panda_antivirus | 10.0.2.7 | cpe:2.3:a:pandasecurity:panda_antivirus:10.0.2.7:*:*:*:*:*:*:* |
rising-global | rising_antivirus | 22.83.00.03 | cpe:2.3:a:rising-global:rising_antivirus:22.83.00.03:*:*:*:*:*:*:* |