漏洞标题
N/A
漏洞描述信息
Quick Heal(也称为猫的快修)11.00中的ELF文件解析器、M McAfee病毒扫描器引擎5.400.0.1158、M McAfee Gateway(前称Webwasher)2010.1C、eSafe 7.0.17.0、Kaspersky病毒扫描器7.0.0.125、F-Secure病毒扫描器9.0.16160.0、Sophos病毒扫描器4.61.0、Antiy Labs AVL SDK 2.0.3.7、Rising Antivirus 22.83.00.03、Forinet病毒扫描器4.2.254.0和Panda病毒扫描器10.0.2.7允许远程攻击者通过修改类字段的ELF文件绕过病毒检测。注意:如果发布额外的信息,表明不同的elf解析器实现中此错误独立发生,则可能会被 Split 成多个CVE。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, F-Secure Anti-Virus 9.0.16160.0, Sophos Anti-Virus 4.61.0, Antiy Labs AVL SDK 2.0.3.7, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified class field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
多个杀毒产品ELF文件权限许可和访问控制漏洞
漏洞描述信息
Quick Heal(也称Cat QuickHeal)11.00版本,McAfee Anti-Virus Scanning Engine 5.400.0.1158版本,McAfee Gateway (以前的Webwasher) 2010.1C版本,eSafe 7.0.17.0版本,Kaspersky Anti-Virus 7.0.0.125版本,F-Secure Anti-Virus 9.0.16160.0版本,Sophos Anti-Virus 4.61.0版本,Antiy Labs AVL SDK 2
CVSS信息
N/A
漏洞类别
授权问题