File Parsing Vulnerability in Comodo Antivirus Affects Microsoft Office Documents
CVE-2012-1437

Currently unrated

Key Information:

Vendor: Comodo
Status: Comodo Antivirus
Vendor: CVE Published:; 21 March 2012

What is CVE-2012-1437?

The Microsoft Office file parser in Comodo Antivirus version 7425 contains a vulnerability that allows remote attackers to circumvent malware detection. By crafting an Office file containing a specific character sequence, attackers can exploit the file parsing mechanism, leading to possible malicious activities undetected by the antivirus software. This vulnerability highlights the importance of robust file parsing processes in security applications to mitigate potential evasion attacks.

References

http://www.securityfocus.com/archive/1/522005

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/52597

vdb-entryx_refsource_BID

http://www.ieee-security.org/TC/SP2012/program.html

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 21, 2012
Vulnerability Reserved
Feb 29, 2012