Vulnerability in Aladdin Esafe
CVE-2012-1454
The ELF file parser in Dr.Web 5.0.2.03300, eSafe 7.0.17.0, McAfee Gateway (formerly Webwasher) 2010.1C, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware dete…
EPSS: 0.001 (33.4th percentile) — read the EPSS interpretation.
Affected products
- Aladdin Esafe — versions 7.0.17.0
- Drweb Dr.web_antivirus — versions 5.0.2.03300
- Fortinet Fortinet_antivirus — versions 4.2.254.0
- Mcafee Gateway — versions 2010.1c
- Pandasecurity Panda_antivirus — versions 10.0.2.7
- Rising-global Rising_antivirus — versions 22.83.00.03
- N/a — versions n/a
Weakness classification (CWE)
References
- 80432 (x_refsource_OSVDB, vdb-entry)
- 20120319 Evasion attacks expoliting file-parsing vulnerabilities in antivirus products (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (x_refsource_MISC)