Info

Disclosure

Mar 19, 2012

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Multiple McAfee products contain a flaw related to the anti-virus / anti-malware scanning functionality. The issue is triggered when a context-dependent attacker sends a malformed RAR file with an initial MZ sequence. This type of file will not be handled properly by the software and may allow an attacker to bypass the scanning allowing for the delivery of malware.

Classification

Location: Context Dependent
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Solution Unknown
Exploit: Exploit Private
Disclosure: Uncoordinated Disclosure
OSVDB: Security Software

Solution

OSVDB is not aware of a solution for this vulnerability.

Products

McAfee, Inc.	McAfee Anti-Virus Scanning Engine	5.400.0.1158
McAfee, Inc.	McAfee Gateway	2010.1C

References

Security Tracker: 1026840
CVE ID: 2012-1443 (see also: NVD)
Related OSVDB ID: 80440 80441 80442 80443 80444 80445 80446 80447 80448 80449 80450 80451 80452 80453 80454 80455 80456 80457 80458 80460 80461 80462 80463 80464 80465 80466 80467 80468 80469 80470 80471 80472
Mail List Post: http://seclists.org/bugtraq/2012/Mar/88
Vendor URL: http://www.mcafee.com/us/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/80459

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

McAfee, Inc.

McAfee Anti-Virus Scanning Engine

McAfee Gateway

References

Credit