CVE-2012-1463 Information
Description
The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00 Bitdefender 7.2 Quick Heal (aka Cat QuickHeal) 11.00 Command Antivirus 5.2.11.5 Comodo Antivirus 7424 eSafe 7.0.17.0 F-Prot Antivirus 4.6.2.117 F-Secure Anti-Virus 9.0.16160.0 McAfee Anti-Virus Scanning Engine 5.400.0.1158 Norman Antivirus 6.06.12 nProtect Anti-Virus 2011-01-17.01 and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified endianness field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.
Reference
http://osvdb.org/80426 http://osvdb.org/80433 http://www.ieee-security.org/TC/SP2012/program.html http://www.securityfocus.com/archive/1/522005 http://www.securityfocus.com/bid/52614 https://exchange.xforce.ibmcloud.com/vulnerabilities/74311
Share on: