CVE-2012-1442

CWE-2643 documents3 sources

Severity

4.3MEDIUM

EPSS

2.8%

top 13.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Aladdin Esafe Antiy AVL SDK CAT Quick Heal +8 more

Timeline

PublishedMar 21

Latest updateMay 17

Description

The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, F-Secure Anti-Virus 9.0.16160.0, Sophos Anti-Virus 4.61.0, Antiy Labs AVL SDK 2.0.3.7, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified class field. NOTE: this may later be S…

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages11 packages

▶NVDfortinet/fortinet_antivirus4.2.254.0

▶NVDpandasecurity/panda_antivirus10.0.2.7

▶NVDrising-global/rising_antivirus22.83.00.03

▶NVDsophos/sophos_anti-virus4.61.0

▶NVDf-secure/f-secure_anti-virus9.0.16160.0

🔴Vulnerability Details

GHSA

GHSA-m8px-62ch-j9gx: The ELF file parser in Quick Heal (aka Cat QuickHeal) 11↗2022-05-17

▶

CVEList

CVE-2012-1442: The ELF file parser in Quick Heal (aka Cat QuickHeal) 11↗2012-03-21

▶