CVE-2012-1430

First published: Wed Mar 21 2012(Updated: )

The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, nProtect Anti-Virus 2011-01-17.01, Sophos Anti-Virus 4.61.0, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via an ELF file with a \19\04\00\10 character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

Credit: cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/references
• agent/type
• agent/severity
• agent/author
• agent/weakness
• agent/description
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/first-publish-date
• agent/event
• agent/source
• agent/softwarecombine
• agent/tags
• collector/nvd-index
• agent/software-canonical-lookup-request
• vendor/aladdin
• canonical/aladdin esafe
• version/aladdin esafe/7.0.17.0
• vendor/bitdefender
• canonical/bitdefender antivirus
• version/bitdefender antivirus/7.2
• vendor/comodo
• canonical/comodo comodo antivirus
• version/comodo comodo antivirus/7424
• vendor/f-secure
• canonical/f-secure anti-virus
• version/f-secure anti-virus/9.0.16160.0
• vendor/mcafee
• canonical/mcafee gateway
• version/mcafee gateway/2010.1c
• canonical/mcafee anti-malware scan engine
• version/mcafee anti-malware scan engine/5.400.0.1158
• vendor/nprotect
• canonical/nprotect antivirus
• version/nprotect antivirus/2011-01-17.01
• vendor/rising-global
• canonical/rising antivirus
• version/rising antivirus/22.83.00.03
• vendor/sophos
• canonical/sophos anti-virus
• version/sophos anti-virus/4.61.0