CVE-2012-1463

CWE-2643 documents3 sources

Severity

4.3MEDIUM

EPSS

1.0%

top 23.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Ahnlab V3 Internet Security Aladdin Esafe Authentium Command Antivirus +9 more

Timeline

PublishedMar 21

Latest updateMay 17

Description

The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, Norman Antivirus 6.06.12, nProtect Anti-Virus 2011-01-17.01, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified endianness field. NOTE: this …

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages12 packages

▶NVDnprotect/nprotect_antivirus2011-01-17.01

▶NVDpandasecurity/panda_antivirus10.0.2.7

▶NVDcomodo/comodo_antivirus7424

▶NVDf-prot/f-prot_antivirus4.6.2.117

▶NVDauthentium/command_antivirus5.2.11.5

🔴Vulnerability Details

GHSA

GHSA-m74p-gqj9-cr9v: The ELF file parser in AhnLab V3 Internet Security 2011↗2022-05-17

▶

CVEList

CVE-2012-1463: The ELF file parser in AhnLab V3 Internet Security 2011↗2012-03-21

▶