CVE-2012-1458

The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CHM parser implementations.

Published: Mar 21, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-1458
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
clamav / clamav	0.96.4	0.96.4.x
sophos / sophos_anti-virus	4.61.0	4.61.0.x

http://lists.opensuse.org/opensuse-security-announce/2012-07/msg00002.html
http://osvdb.org/80473
http://osvdb.org/80474
http://www.ieee-security.org/TC/SP2012/program.html
http://www.mandriva.com/security/advisories?name=MDVSA-2012:094
http://www.securityfocus.com/archive/1/522005
http://www.securityfocus.com/bid/52611
https://exchange.xforce.ibmcloud.com/vulnerabilities/74301

Vulnerability Database

289,784

CVE-2012-1458