cbcvebase.
CVE-2012-1463
published 2012-03-21

CVE-2012-1463: The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, Comodo…

PriorityP341medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EPSS
94.36%
99.8th percentile
The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, Norman Antivirus 6.06.12, nProtect Anti-Virus 2011-01-17.01, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified endianness field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

Affected

12 ranges
VendorProductVersion rangeFixed in
ahnlabv3_internet_security
aladdinesafe
authentiumcommand_antivirus
bitdefenderbitdefender
catquick_heal
comodocomodo_antivirus
f-protf-prot_antivirus
f-securef-secure_anti-virus
mcafeescan_engine
normannorman_antivirus_antispyware
nprotectnprotect_antivirus
pandasecuritypanda_antivirus
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.