Malware Bypass Vulnerability in Fortinet Antivirus and Other Security Products
CVE-2012-1447

Currently unrated

Key Information:

Vendor: Fortinet
Status: Fortinet Antivirus; Dr.web Antivirus; Esafe; Panda Antivirus
Vendor: CVE Published:; 21 March 2012

Summary

The ELF file parser in specific antivirus products allows remote attackers to evade malware detection by exploiting a weakness in the e_version field of ELF files. This vulnerability highlights a critical flaw in the file parsing mechanism, which can potentially lead to undetected malicious activity. Security measures should be evaluated and updated to address this significant threat, as it poses risks to organizations relying on these antivirus solutions.

References

http://osvdb.org/80432

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/archive/1/522005

mailing-listx_refsource_BUGTRAQ

http://www.ieee-security.org/TC/SP2012/program.html

x_refsource_MISC

Timeline

Vulnerability published
Mar 21, 2012
Vulnerability Reserved
Feb 29, 2012