CVE-2012-1458
Advisory lineage Upstream: 0 Downstream: 2
Downstream
Modified
Published: 21 Mar 2012, 10:00
Last modified:06 Aug 2024, 19:01
Vulnerability Summary
Overall Risk (default)
low
19/100 CVSS Score
4.3 MEDIUM
v2.0 (nvd)
EPSS Score
8.12% LOW
8% probability +1.98%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
21 Mar 2012, 10:00
Published
Vulnerability first disclosed
06 Aug 2024, 19:01
Last Modified
Vulnerability information updated
Description
The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CHM parser implementations.
CVSS Metrics
- v2.0•MEDIUM•Score: 4.3AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS Trends
Current EPSS score: 8.12%• Percentile: 92%
Techniques & Countermeasures
- CWE-264•Permissions, Privileges, and Access Controls
Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
Affected Systems
- clamav•clamav
0.96.4
- sophos•sophos_anti-virus
4.61.0
References (8)
- http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00002.html
- http://www.securityfocus.com/archive/1/522005
- http://www.securityfocus.com/bid/52611
- http://osvdb.org/80473
- http://www.ieee-security.org/TC/SP2012/program.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74301
- http://osvdb.org/80474
- http://www.mandriva.com/security/advisories?name=MDVSA-2012:094