V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
CVE-2012-1433
CVE
Medium

The Microsoft EXE file parser in AhnLab V3 Internet Security 2011.01.18.00, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, Ikarus Virus Uti…

CVSS
4.3
Medium
EPSS
0.94
p99
Published
2012-01-01
Updated
2012-01-01
Description

The Microsoft EXE file parser in AhnLab V3 Internet Security 2011.01.18.00, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an EXE file with a \4a\46\49\46 character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different EXE parser implementations.

Tags · CWE
CWE-264
Affected products
V3_internet_securityEsafeAnti-malwareIkarus_virus_utilities_t3_command_line_scannerPanda_antivirus
CVSS vector
AV:N/AC:M/Au:N/C:N/I:P/A:N
Timeline
2012-01-01
Published
2012-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: M
Medium
Authentication
Au: N
None (N)
Confidentiality Impact
C: N
None (N)
Integrity Impact
I: P
Partial
Availability Impact
A: N
None (N)
Exploit indicators
EPSS
0.937 · p99
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Pandasecurity
Panda Antivirus
Aladdin
Esafe
Ikarus
Ikarus Virus Utilities T3 Command Line Scanner
Emsisoft
Anti-malware
Ahnlab
V3 Internet Security
ProductVendorStatus
anti-malware*Tracked
esafe*Tracked
ikarus_virus_utilities_t3_command_line_scanner*Tracked
panda_antivirus*Tracked
v3_internet_security*Tracked
Source databases
CVE