PT-2012-3279 · Mcafee+4 · Mcafee Gateway+5

Published

2012-03-21

Updated

2012-07-28

CVE-2012-1454

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Dr.Web version 5.0.2.03300 eSafe version 7.0.17.0 McAfee Gateway version 2010.1C Rising Antivirus version 22.83.00.03 Fortinet Antivirus version 4.2.254.0 Panda Antivirus version 10.0.2.7

Description The issue allows remote attackers to bypass malware detection. This is achieved via an ELF file with a modified ei version field.

Recommendations For Dr.Web version 5.0.2.03300, update to a version that fixes the ELF file parser issue. For eSafe version 7.0.17.0, update to a version that fixes the ELF file parser issue. For McAfee Gateway version 2010.1C, update to a version that fixes the ELF file parser issue. For Rising Antivirus version 22.83.00.03, update to a version that fixes the ELF file parser issue. For Fortinet Antivirus version 4.2.254.0, update to a version that fixes the ELF file parser issue. For Panda Antivirus version 10.0.2.7, update to a version that fixes the ELF file parser issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2012-1454

Affected Products

Dr.Web

Fortinet Antivirus

Mcafee Gateway

Panda Antivirus

Rising Antivirus

Esafe

PT-2012-3279 · Mcafee+4 · Mcafee Gateway+5

CVE-2012-1454

Weakness Enumeration

Related Identifiers

Affected Products

References · 5