PT-2012-3263 · Comodo+2 · Comodo Antivirus+2

Benedikt Driessen

Published

2012-03-21

Updated

2012-03-27

CVE-2012-1438

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Comodo Antivirus version 7425 Sophos Anti-Virus version 4.61.0

Description The issue allows remote attackers to bypass malware detection in the Microsoft Office file parser. This is achieved by using an Office file with a ustar character sequence at a specific location.

Recommendations For Comodo Antivirus version 7425, update the Microsoft Office file parser to prevent bypassing of malware detection. For Sophos Anti-Virus version 4.61.0, update the Microsoft Office file parser to prevent bypassing of malware detection.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2012-1438

Affected Products

Comodo Antivirus

Office

Sophos Anti-Virus

PT-2012-3263 · Comodo+2 · Comodo Antivirus+2

CVE-2012-1438

Weakness Enumeration

Related Identifiers

Affected Products

References · 3