← Back

CVE-2012-1448

nvd nist
Published: Mar 21, 2012Modified: Apr 29, 2026

JSON object

Loading...
4.3
Vector
AV:N/AC:M/Au:N/C:N/I:P/A:N
Exploitability: 8.6 / Impact: 2.9
Source: NVD

Description

The CAB file parser in Quick Heal (aka Cat QuickHeal) 11.00, Trend Micro AntiVirus 9.120.0.1004, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Trend Micro HouseCall 9.120.0.1004, and Emsisoft Anti-Malware 5.1.0.1 allows remote attackers to bypass malware detection via a CAB file with a modified cbCabinet field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

Affected (5)

Show all products
Cat: Quick Heal · Emsisoft: Anti Malware · Ikarus: Ikarus Virus Utilities T3 Command Line Scanner · Trendmicro: Housecall, Trend Micro Antivirus
Cat
1 product
Quick Heal
Emsisoft
1 product
Anti Malware
Ikarus
1 product
Ikarus Virus Utilities T3 Command Line Scanner
Trendmicro
2 products
Housecall
Trend Micro Antivirus
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Quick Heal
Version 11.00
Anti Malware
Version 5.1.0.1
Ikarus Virus Utilities T3 Command Line Scanner
Version 1.1.97.0
Housecall
Version 9.120.0.1004
Trend Micro Antivirus
Version 9.120.0.1004

Related CWEs

CWE-264
CWE-264

References (6)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.