File Parsing Vulnerability in Emsisoft and Sophos Anti-Virus Products
CVE-2012-1450
Currently unrated
Summary
The vulnerability found in the CAB file parser of specific antivirus software products enables remote attackers to bypass malware detection mechanisms. By crafting a CAB file with a modified reserved3 field, attackers can exploit this flaw, allowing malicious files to evade detection and potentially execute harmful actions without alerting the user or the software. This issue highlights the importance of robust parsing mechanisms within antivirus solutions to prevent sophisticated evasion techniques.
References
EPSS Score
24% chance of being exploited in the next 30 days.
Timeline
Vulnerability published
Vulnerability Reserved