The ELF file parser in Dr.Web 5.0.2.03300, eSafe 7.0.17.0, McAfee Gateway (formerly Webwasher) 2010.1C, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified ei_version field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:37
Type | Values Removed | Values Added |
---|---|---|
References | () http://osvdb.org/80432 - | |
References | () http://www.ieee-security.org/TC/SP2012/program.html - | |
References | () http://www.securityfocus.com/archive/1/522005 - |
Information
Published : 2012-03-21 10:11
Updated : 2024-11-21 01:37
NVD link : CVE-2012-1454
Mitre link : CVE-2012-1454
CVE.ORG link : CVE-2012-1454
JSON object : View
Products Affected
pandasecurity
- panda_antivirus
aladdin
- esafe
mcafee
- gateway
drweb
- dr.web_antivirus
rising-global
- rising_antivirus
fortinet
- fortinet_antivirus
CWE
CWE-264
Permissions, Privileges, and Access Controls