CVE-2012-1446

Name of the Vulnerable Software and Affected Versions Quick Heal version 11.00 McAfee Anti-Virus Scanning Engine version 5.400.0.1158 Symantec Endpoint Protection version 11 with AVEngine version 20101.3.0.103 Norman Antivirus version 6.06.12 eSafe version 7.0.17.0 Kaspersky Anti-Virus version 7.0.0.125 McAfee Gateway version 2010.1C Sophos Anti-Virus version 4.61.0 CA eTrust Vet Antivirus version 36.1.8511 Antiy Labs AVL SDK version 2.0.3.7 PC Tools AntiVirus version 7.0.3.5 Rising Antivirus version 22.83.00.03 Fortinet Antivirus version 4.2.254.0 Panda Antivirus version 10.0.2.7

Description The ELF file parser in the affected software allows remote attackers to bypass malware detection via an ELF file with a modified encoding field.

Recommendations For Quick Heal version 11.00, update the ELF file parser to correctly handle modified encoding fields. For McAfee Anti-Virus Scanning Engine version 5.400.0.1158, update the scanning engine to detect malware in ELF files with modified encoding fields. For Symantec Endpoint Protection version 11 with AVEngine version 20101.3.0.103, update the AVEngine to correctly parse ELF files. For Norman Antivirus version 6.06.12, update the antivirus software to detect malware in ELF files. For eSafe version 7.0.17.0, update the eSafe software to correctly handle ELF files with modified encoding fields. For Kaspersky Anti-Virus version 7.0.0.125, update the antivirus software to detect malware in ELF files. For McAfee Gateway version 2010.1C, update the gateway software to correctly parse ELF files. For Sophos Anti-Virus version 4.61.0, update the antivirus software to detect malware in ELF files. For CA eTrust Vet Antivirus version 36.1.8511, update the antivirus software to correctly handle ELF files with modified encoding fields. For Antiy Labs AVL SDK version 2.0.3.7, update the SDK to correctly parse ELF files. For PC Tools AntiVirus version 7.0.3.5, update the antivirus software to detect malware in ELF files. For Rising Antivirus version 22.83.00.03, update the antivirus software to correctly handle ELF files with modified encoding fields. For Fortinet Antivirus version 4.2.254.0, update the antivirus software to detect malware in ELF files. For Panda Antivirus version 10.0.2.7, update the antivirus software to correctly parse ELF files.