CVE-2012-1453

CVE Database · CVE-2012-1453

CVE-2012-1453

· N/AModified

CVSS v3.1

N/A

EPSS

97.71%

Published

Mar 21, 2012

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The CAB file parser in Dr.Web 5.0.2.03300, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Sophos Anti-Virus 4.61.0, Trend Micro AntiVirus 9.120.0.1004, McAfee Gateway (formerly Webwasher) 2010.1C, Emsisoft Anti-Malware 5.1.0.1, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL SDK 2.0.3.7, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, Rising Antivirus 22.83.00.03, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via a CAB file with a modified coffFiles field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

Weaknesses (CWE)

CWE-264

Affected Products (14)

antiy · avl_sdkvulnerable

ca · etrust_vet_antivirusvulnerable

drweb · dr.web_antivirusvulnerable

emsisoft · anti-malwarevulnerable

fortinet · fortinet_antivirusvulnerable

ikarus · ikarus_virus_utilities_t3_command_line_scannervulnerable

kaspersky · kaspersky_anti-virusvulnerable

mcafee · gatewayvulnerable

microsoft · security_essentialsvulnerable