Design/Logic Flaw

2012-03-2110:11:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

0.929 High

EPSS

Percentile

99.0%

JSON

The Microsoft EXE file parser in eSafe 7.0.17.0 and Prevx 3.0 allows remote attackers to bypass malware detection via an EXE file with a modified value in any of several e_ fields. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different EXE parser implementations.

CPENameOperatorVersion
esafeeq7.0.17.0
prevxeq3.0

CPE	Name	Operator	Version
	esafe	eq	7.0.17.0
	prevx	eq	3.0

References

www.ieee-security.org/TC/SP2012/program.html

www.securityfocus.com/archive/1/522005