CVE-2012-1450

Currently unrated

Key Information:

Vendor: Sophos
Status: Sophos Anti-virus; Ikarus Virus Utilities T3 Command Line Scanner; Anti-malware
Vendor: CVE Published:; 21 March 2012

Summary

The CAB file parser in Emsisoft Anti-Malware 5.1.0.1, Sophos Anti-Virus 4.61.0, and Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0 allows remote attackers to bypass malware detection via a CAB file with a modified reserved3 field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

References

http://www.securityfocus.com/archive/1/522005

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/52617

vdb-entryx_refsource_BID

http://www.ieee-security.org/TC/SP2012/program.html

x_refsource_MISC

EPSS Score

95% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 21, 2012
Vulnerability Reserved
Feb 29, 2012

Collectors

NVD DatabaseMitre Database