exploitDog

CVE-2012-1450

Опубликовано: 21 мар. 2012

Источник: nvd

CVSS2: 4.3

EPSS Средний

Описание

The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Sophos Anti-Virus 4.61.0, and Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0 allows remote attackers to bypass malware detection via a CAB file with a modified reserved3 field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:emsisoft:anti-malware:5.1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:ikarus:ikarus_virus_utilities_t3_command_line_scanner:1.1.97.0:*:*:*:*:*:*:*

cpe:2.3:a:sophos:sophos_anti-virus:4.61.0:*:*:*:*:*:*:*

EPSS

Процентиль: 95%

0.19516

Средний

4.3 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-8x96-vmvq-2qcw

github

больше 3 лет назад

The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Sophos Anti-Virus 4.61.0, and Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0 allows remote attackers to bypass malware detection via a CAB file with a modified reserved3 field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

EPSS

Процентиль: 95%

0.19516

Средний

4.3 Medium

CVSS2

Дефекты

CWE-264