CVE-2012-1442

Published: Mar 21, 2012Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, F-Secure Anti-Virus 9.0.16160.0, Sophos Anti-Virus 4.61.0, Antiy Labs AVL SDK 2.0.3.7, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified class field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

Affected (11)

Products: Aladdin: Esafe · Antiy: Avl Sdk · Cat: Quick Heal · +7 more

Show all products

Aladdin: Esafe · Antiy: Avl Sdk · Cat: Quick Heal · F Secure: F Secure Anti Virus · Fortinet: Fortinet Antivirus · Kaspersky: Kaspersky Anti Virus · Mcafee: Gateway, Scan Engine · Pandasecurity: Panda Antivirus · Rising Global: Rising Antivirus · Sophos: Sophos Anti Virus

1 product

1 product

1 product

1 product

1 product

1 product

2 products

1 product

1 product

1 product

Configuration A

11 vulnerable

Vulnerable Software	Affected Versions
Aladdin Esafe	Version 7.0.17.0
Antiy Avl Sdk	Version 2.0.3.7
Cat Quick Heal	Version 11.00
F Secure F Secure Anti Virus	Version 9.0.16160.0
Fortinet Fortinet Antivirus	Version 4.2.254.0
Kaspersky Kaspersky Anti Virus	Version 7.0.0.125
Mcafee Gateway	Version 2010.1c
Mcafee Scan Engine	Version 5.400.0.1158
Pandasecurity Panda Antivirus	Version 10.0.2.7
Rising Global Rising Antivirus	Version 22.83.00.03
Sophos Sophos Anti Virus	Version 4.61.0