CVE-2012-1448
First published: Wed Mar 21 2012(Updated: )
The CAB file parser in Quick Heal (aka Cat QuickHeal) 11.00, Trend Micro AntiVirus 9.120.0.1004, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Trend Micro HouseCall 9.120.0.1004, and Emsisoft Anti-Malware 5.1.0.1 allows remote attackers to bypass malware detection via a CAB file with a modified cbCabinet field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| CAT Quick Heal | =11.00 | |
| Emsisoft Anti-Malware | =5.1.0.1 | |
| Ikarus Ikarus Virus Utilities T3 Command Line Scanner | =1.1.97.0 | |
| Trendmicro Housecall | =9.120.0.1004 | |
| Trendmicro Trend Micro Antivirus | =9.120.0.1004 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-index
- vendor/cat
- canonical/cat quick heal
- version/cat quick heal/11.00
- vendor/emsisoft
- canonical/emsisoft anti-malware
- version/emsisoft anti-malware/5.1.0.1
- vendor/ikarus
- canonical/ikarus ikarus virus utilities t3 command line scanner
- version/ikarus ikarus virus utilities t3 command line scanner/1.1.97.0
- vendor/trendmicro
- canonical/trendmicro housecall
- version/trendmicro housecall/9.120.0.1004
- canonical/trendmicro trend micro antivirus
- version/trendmicro trend micro antivirus/9.120.0.1004