VuXML ID | Description |
589d8053-0b03-11dd-b4ef-00e07dc4ec84 | clamav -- Multiple Vulnerabilities
Secunia reports:
Some vulnerabilities have been reported in ClamAV, which can be
exploited by malicious people to cause a DoS (Denial of Service)
or to compromise a vulnerable system.
1) A boundary error exists within the "cli_scanpe()" function in
libclamav/pe.c. This can be exploited to cause a heap-based buffer
overflow via a specially crafted "Upack" executable.
Successful exploitation allows execution of arbitrary code.
2) A boundary error within the processing of PeSpin packed
executables in libclamav/spin.c can be exploited to cause a
heap-based buffer overflow.
Successful exploitation may allow execution of arbitrary code.
3) An unspecified error in the processing of ARJ files can be
exploited to hang ClamAV.
Discovery 2008-04-15 Entry 2008-04-15 clamav
< 0.93
clamav-devel
< 20080415
CVE-2008-1100
CVE-2008-1387
http://secunia.com/advisories/29000
|
24b64fb0-af1d-11dd-8a16-001b1116b350 | clamav -- off-by-one heap overflow in VBA project parser
Advisory from Moritz Jodeit, November 8th, 2008:
ClamAV contains an off-by-one heap overflow vulnerability
in the code responsible for parsing VBA project files.
Successful exploitation could allow an attacker to execute
arbitrary code with the privileges of the `clamd' process by
sending an email with a prepared attachment.
A VBA project file embedded inside an OLE2 office document
send as an attachment can trigger the off-by-one.
Entry from Thu Oct 30 13:52:42 CET 2008 (acab) in ChangeLog:
libclamav/vba_extract.c: get_unicode_name off-by-one,
bb#1239 reported by Moritz Jodeit >moritz*jodeit.org<
Discovery 2008-11-08 Entry 2008-11-10 clamav
< 0.94.1
clamav-devel
< 20081105
http://www.securityfocus.com/archive/1/498169/30/0/threaded
http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog
CVE-2008-5050
|
eb5124a4-8a20-11db-b033-00123ffe8333 | clamav -- Multipart Nestings Denial of Service
Secunia reports:
Clam AntiVirus have a vulnerability, which can be exploited by
malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to a stack overflow when scanning
messages with deeply nested multipart content. This can be
exploited to crash the service by sending specially crafted emails
to a vulnerable system.
Discovery 2006-12-06 Entry 2006-12-12 Modified 2013-06-19 clamav
< 0.88.7
clamav-devel
le 20061029
CVE-2006-6481
http://secunia.com/advisories/23347/
http://www.quantenblog.net/security/virus-scanner-bypass
|
3d0428b2-fdfb-11e4-894f-d050996490d0 | clamav -- multiple vulnerabilities
ClamAV project reports:
ClamAV 0.98.7 is here! This release contains new
scanning features and bug fixes.
Fix infinite loop condition on crafted y0da cryptor file.
Identified and patch suggested by Sebastian Andrzej Siewior.
CVE-2015-2221.
Fix crash on crafted petite packed file. Reported and patch
supplied by Sebastian Andrzej Siewior. CVE-2015-2222.
Fix an infinite loop condition on a crafted "xz" archive
file. This was reported by Dimitri Kirchner and Goulven
Guiheux. CVE-2015-2668.
Apply upstream patch for possible heap overflow in Henry
Spencer's regex library. CVE-2015-2305.
Fix crash in upx decoder with crafted file. Discovered and
patch supplied by Sebastian Andrzej Siewior. CVE-2015-2170.
Discovery 2015-04-29 Entry 2015-05-19 clamav
< 0.98.7
clamav-devel
gt 0
CVE-2015-2170
CVE-2015-2221
CVE-2015-2222
CVE-2015-2305
CVE-2015-2668
http://blog.clamav.net/2015/04/clamav-0987-has-been-released.html
|
eb12ebee-b7af-11e1-b5e0-000c299b62e1 | clamav -- multiple vulnerabilities
MITRE Advisories report:
The TAR parser allows remote attackers to bypass malware detection
via a POSIX TAR file with an initial [aliases] character sequence.
The TAR parser allows remote attackers to bypass malware detection
via a TAR archive entry with a length field that exceeds the total
TAR file size.
The Microsoft CHM file parser allows remote attackers to bypass
malware detection via a crafted reset interval in the LZXC header
of a CHM file.
The TAR file parser allows remote attackers to bypass malware
detection via a TAR archive entry with a length field
corresponding to that entire entry, plus part of the header ofxi
the next entry.
Discovery 2012-03-19 Entry 2012-06-16 clamav
< 0.97.5
clamav-devel
< 20120612
CVE-2012-1419
CVE-2012-1457
CVE-2012-1458
CVE-2012-1459
|
da5c4072-8082-11dd-9c8c-001c2514716c | clamav -- CHM Processing Denial of Service
Hanno Boeck reports:
A fuzzing test showed weakness in the chm parser of
clamav, which can possibly be exploited. The clamav
team has disabled the chm module in older versions
though freshclam updates and has released 0.94 with
a fixed parser.
Discovery 2008-07-09 Entry 2008-09-12 clamav
< 0.94
clamav-devel
< 20080902
CVE-2008-1389
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1089
|