Lucene search

[email protected]CVE-2012-1458

HistoryMar 21, 2012 - 10:11 a.m.

CVE-2012-1458

2012-03-2110:11:00

CWE-264

[email protected]

web.nvd.nist.gov

cve-2012-1458

chm file

clamav

sophos anti-virus

vulnerability

lzxc header

malware detection

6 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.748 High

EPSS

Percentile

98.1%

JSON

The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CHM parser implementations.

CPENameOperatorVersion
clamav:clamavclamaveq0.96.4
sophos:sophos_anti-virussophos sophos anti-viruseq4.61.0

CPE	Name	Operator	Version
clamav:clamav	clamav	eq	0.96.4
sophos:sophos_anti-virus	sophos sophos anti-virus	eq	4.61.0

References

lists.opensuse.org/opensuse-security-announce/2012-07/msg00002.html

osvdb.org/80473

osvdb.org/80474

www.ieee-security.org/TC/SP2012/program.html

www.mandriva.com/security/advisories?name=MDVSA-2012:094

www.securityfocus.com/archive/1/522005

www.securityfocus.com/bid/52611

exchange.xforce.ibmcloud.com/vulnerabilities/74301

6 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.748 High

EPSS

Percentile

98.1%

JSON

Related for CVE-2012-1458

prion1 ubuntucve1 debiancve1 nessus10 openvas19 ubuntu3 altlinux3 fedora4 securityvulns1 suse1 freebsd1