PT-2012-3261 · Emsisoft+4 · Emsisoft Anti-Malware+4
Benedikt Driessen
+4
·
Published
2012-03-21
·
Updated
2012-04-13
·
CVE-2012-1436
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
AhnLab V3 Internet Security version 2011.01.18.00
Emsisoft Anti-Malware version 5.1.0.1
eSafe version 7.0.17.0
Ikarus Virus Utilities T3 Command Line Scanner version 1.1.97.0
Panda Antivirus version 10.0.2.7
Description
The Microsoft EXE file parser in various security products allows remote attackers to bypass malware detection via an EXE file with a specific character sequence at a certain location.
Recommendations
For AhnLab V3 Internet Security version 2011.01.18.00, update to a newer version that addresses the EXE file parser issue.
For Emsisoft Anti-Malware version 5.1.0.1, update to a newer version that addresses the EXE file parser issue.
For eSafe version 7.0.17.0, update to a newer version that addresses the EXE file parser issue.
For Ikarus Virus Utilities T3 Command Line Scanner version 1.1.97.0, update to a newer version that addresses the EXE file parser issue.
For Panda Antivirus version 10.0.2.7, update to a newer version that addresses the EXE file parser issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ahnlab V3 Internet Security
Emsisoft Anti-Malware
Ikarus Virus Utilities T3 Command Line Scanner
Panda Antivirus
Esafe