CVE-2012-1429

Aladdin Esafe - Access Control

Title source: rule

Description

The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, and nProtect Anti-Virus 2011-01-17.01 allows remote attackers to bypass malware detection via an ELF file with a ustar character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

References (3)

[Various Sources] http://www.ieee-security.org/TC/SP2012/program.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/74244

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/522005

Scores

EPSS 0.0505

EPSS Percentile 89.6%

Classification

CWE

CWE-264

Status draft

Affected Products (9)

aladdin/esafe

comodo/comodo_antivirus

emsisoft/anti-malware

f-secure/f-secure_anti-virus

ikarus/ikarus_virus_utilities_t3_command_line_scanner

mcafee/gateway

mcafee/scan_engine

nprotect/nprotect_antivirus

softwin/bitdefender

Timeline

Published Mar 21, 2012

Tracked Since Feb 18, 2026