CVE-2012-1448
Last modified
CVE-2012-1448 is a vulnerability of currently unknown severity. The CAB file parser in Quick Heal (aka Cat QuickHeal) 11.00, Trend Micro AntiVirus 9.120.0.1004, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Trend Micro HouseCall 9.120.0.1004, and Emsisoft Anti-Malware 5.1.0.1 allows remote attackers to bypass malware detection via a CAB file with a modified cbCabinet field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.. EPSS estimates a 89.01% chance of exploitation in the next 30 days.
Description
The CAB file parser in Quick Heal (aka Cat QuickHeal) 11.00, Trend Micro AntiVirus 9.120.0.1004, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Trend Micro HouseCall 9.120.0.1004, and Emsisoft Anti-Malware 5.1.0.1 allows remote attackers to bypass malware detection via a CAB file with a modified cbCabinet field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cat | Quick Heal | 11.00 |
| Emsisoft | Anti-Malware | 5.1.0.1 |
| Ikarus | Ikarus Virus Utilities T3 Command Line Scanner | 1.1.97.0 |
| Trendmicro | Housecall | 9.120.0.1004 |
| Trendmicro | Trend Micro Antivirus | 9.120.0.1004 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2012-1448?
How severe is CVE-2012-1448?
How do I fix CVE-2012-1448?
Are you affected by CVE-2012-1448?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST