CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-1452

The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Quick Heal (aka Cat QuickHeal) 11.00 allows remote attackers to bypass malware detection via a CAB file with a modified reserved1 field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.056

EPSS Ranking 89.9%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.ieee-security.org/TC/SP2012/program.html
http://www.securityfocus.com/archive/1/522005
http://www.securityfocus.com/bid/52619
http://www.ieee-security.org/TC/SP2012/program.html
http://www.securityfocus.com/archive/1/522005
http://www.securityfocus.com/bid/52619

Products affected by CVE-2012-1452

Cat » Quick Heal » Version: 11.00

cpe:2.3:a:cat:quick_heal:11.00
Emsisoft » Anti-Malware » Version: 5.1.0.1

cpe:2.3:a:emsisoft:anti-malware:5.1.0.1
Ikarus » Ikarus Virus Utilities T3 Command Line Scanner » Version: 1.1.97.0

cpe:2.3:a:ikarus:ikarus_virus_utilities_t3_command_line_scanner:1.1.97.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-1452

Products

Pricing

Contact Us