CVE-2012-1447

Currently unrated

Key Information:

Vendor: Fortinet
Status: Fortinet Antivirus; Dr.web Antivirus; Esafe; Panda Antivirus
Vendor: CVE Published:; 21 March 2012

Summary

The ELF file parser in Fortinet Antivirus 4.2.254.0, eSafe 7.0.17.0, Dr.Web 5.0.2.03300, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified e_version field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

References

http://osvdb.org/80432

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/archive/1/522005

mailing-listx_refsource_BUGTRAQ

http://www.ieee-security.org/TC/SP2012/program.html

x_refsource_MISC

EPSS Score

92% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 21, 2012
Vulnerability Reserved
Feb 29, 2012