File Parsing Vulnerability in Emsisoft and Sophos Anti-Virus Products
CVE-2012-1450

Currently unrated

Key Information:

Summary

The vulnerability found in the CAB file parser of specific antivirus software products enables remote attackers to bypass malware detection mechanisms. By crafting a CAB file with a modified reserved3 field, attackers can exploit this flaw, allowing malicious files to evade detection and potentially execute harmful actions without alerting the user or the software. This issue highlights the importance of robust parsing mechanisms within antivirus solutions to prevent sophisticated evasion techniques.

References

EPSS Score

24% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.