CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-1438

The Microsoft Office file parser in Comodo Antivirus 7425 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via an Office file with a ustar character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different Office parser implementations.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.016

EPSS Ranking 80.6%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.ieee-security.org/TC/SP2012/program.html
http://www.securityfocus.com/archive/1/522005
http://www.ieee-security.org/TC/SP2012/program.html
http://www.securityfocus.com/archive/1/522005

Products affected by CVE-2012-1438

Comodo » Comodo Antivirus » Version: 7425

cpe:2.3:a:comodo:comodo_antivirus:7425
Sophos » Sophos Anti-Virus » Version: 4.61.0

cpe:2.3:a:sophos:sophos_anti-virus:4.61.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-1438

Products

Pricing

Contact Us