| 0 |
| url |
VCID-14nb-kped-cqfm |
| vulnerability_id |
VCID-14nb-kped-cqfm |
| summary |
The Ubuntu clamav-milter.init script in clamav-milter before 0.95.1+dfsg-1ubuntu1.2 in Ubuntu 9.04 sets the ownership of the current working directory to the clamav account, which might allow local users to bypass intended access restrictions via read or write operations involving this directory. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2009-1601
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-14nb-kped-cqfm |
|
| 1 |
| url |
VCID-1bu6-18n5-5kan |
| vulnerability_id |
VCID-1bu6-18n5-5kan |
| summary |
Integer signedness error in the (1) cab_unstore and (2) cab_extract functions in libclamav/cab.c in Clam AntiVirus (ClamAV) before 0.90.2 allow remote attackers to execute arbitrary code via a crafted CHM file that contains a negative integer, which passes a signed comparison and leads to a stack-based buffer overflow. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-1997
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1bu6-18n5-5kan |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
| url |
VCID-2cm5-11ve-aug2 |
| vulnerability_id |
VCID-2cm5-11ve-aug2 |
| summary |
Heap-based buffer overflow in the cli_scanpe function in libclamav/pe.c in ClamAV before 0.98.5 allows remote attackers to cause a denial of service (crash) via a crafted y0da Crypter PE file. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2014-9050
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2cm5-11ve-aug2 |
|
| 6 |
| url |
VCID-2e2e-mh6h-8qaw |
| vulnerability_id |
VCID-2e2e-mh6h-8qaw |
| summary |
The chm_decompress_stream function in libclamav/chmunpack.c in Clam AntiVirus (ClamAV) before 0.90.2 leaks file descriptors, which has unknown impact and attack vectors involving a crafted CHM file, a different vulnerability than CVE-2007-0897. NOTE: some of these details are obtained from third party information. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-1745
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2e2e-mh6h-8qaw |
|
| 7 |
|
| 8 |
| url |
VCID-2k66-zm83-wqdw |
| vulnerability_id |
VCID-2k66-zm83-wqdw |
| summary |
libclamav in ClamAV (aka Clam AntiVirus), as used in Advanced Malware Protection (AMP) on Cisco Email Security Appliance (ESA) devices before 9.7.0-125 and Web Security Appliance (WSA) devices before 9.0.1-135 and 9.1.x before 9.1.1-041, allows remote attackers to cause a denial of service (AMP process restart) via a crafted document, aka Bug IDs CSCuv78533 and CSCuw60503. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2016-1405
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2k66-zm83-wqdw |
|
| 9 |
|
| 10 |
|
| 11 |
| url |
VCID-3xgt-q736-33dq |
| vulnerability_id |
VCID-3xgt-q736-33dq |
| summary |
libclamav in Clam AntiVirus 0.65 allows remote attackers to cause a denial of service (crash) via a uuencoded e-mail message with an invalid line length (e.g., a lowercase character), which causes an assert error in clamd that terminates the calling program. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2004-0270
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-3xgt-q736-33dq |
|
| 12 |
| url |
VCID-414d-bpz7-uqff |
| vulnerability_id |
VCID-414d-bpz7-uqff |
| summary |
Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV before 0.96.5 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, aka (1) "bb #2358" and (2) "bb #2396." |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2010-4260
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-414d-bpz7-uqff |
|
| 13 |
| url |
VCID-42y1-2bsj-afbn |
| vulnerability_id |
VCID-42y1-2bsj-afbn |
| summary |
clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail." |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-4560
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-42y1-2bsj-afbn |
|
| 14 |
|
| 15 |
|
| 16 |
| url |
VCID-4bap-cm84-bffj |
| vulnerability_id |
VCID-4bap-cm84-bffj |
| summary |
The RAR VM (unrarvm.c) in Clam Antivirus (ClamAV) before 0.91 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted RAR archive, resulting in a NULL pointer dereference. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-3725
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4bap-cm84-bffj |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
| url |
VCID-59vv-9bgn-9qbq |
| vulnerability_id |
VCID-59vv-9bgn-9qbq |
| summary |
Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors. NOTE: some of these details are obtained from third party information. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2010-4261
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-59vv-9bgn-9qbq |
|
| 21 |
| url |
VCID-5kng-6hzc-4uc2 |
| vulnerability_id |
VCID-5kng-6hzc-4uc2 |
| summary |
Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service (scanning service crash) via a crafted Compressed HTML Help (CHM) file that causes ClamAV to "read an invalid memory location." |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-5295
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5kng-6hzc-4uc2 |
|
| 22 |
|
| 23 |
| url |
VCID-5p5b-nj6g-gke4 |
| vulnerability_id |
VCID-5p5b-nj6g-gke4 |
| summary |
The OLE2 unpacker in clamd in Clam AntiVirus (ClamAV) 0.87-1 allows remote attackers to cause a denial of service (segmentation fault) via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2_walk_property_tree function. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2005-3239
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5p5b-nj6g-gke4 |
|
| 24 |
| url |
VCID-5uqs-w5s8-hudn |
| vulnerability_id |
VCID-5uqs-w5s8-hudn |
| summary |
bzip2: bzip2: Data integrity error when decompressing (with data integrity tests fail). |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://usn.ubuntu.com/4038-1/ |
| reference_id |
4038-1 |
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:54:12Z/ |
|
|
| url |
https://usn.ubuntu.com/4038-1/ |
|
| 8 |
| reference_url |
https://usn.ubuntu.com/4038-2/ |
| reference_id |
4038-2 |
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:54:12Z/ |
|
|
| url |
https://usn.ubuntu.com/4038-2/ |
|
| 9 |
| reference_url |
https://usn.ubuntu.com/4146-1/ |
| reference_id |
4146-1 |
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:54:12Z/ |
|
|
| url |
https://usn.ubuntu.com/4146-1/ |
|
| 10 |
| reference_url |
https://usn.ubuntu.com/4146-2/ |
| reference_id |
4146-2 |
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-09T15:54:12Z/ |
|
|
| url |
https://usn.ubuntu.com/4146-2/ |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
|
| fixed_packages |
|
| aliases |
CVE-2019-12900
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5uqs-w5s8-hudn |
|
| 25 |
| url |
VCID-6355-darg-13dp |
| vulnerability_id |
VCID-6355-darg-13dp |
| summary |
A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of proper data handling mechanisms within the device buffer while indexing remaining file data on an affected device. An attacker could exploit this vulnerability by sending crafted PDF files to an affected device. A successful exploit could allow the attacker to cause an out-of-bounds read condition, resulting in a crash that could result in a denial of service condition on an affected device. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2019-1786
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6355-darg-13dp |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
| url |
VCID-6z7v-bf8c-dbfw |
| vulnerability_id |
VCID-6z7v-bf8c-dbfw |
| summary |
A vulnerability in the RAR file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of proper error-handling mechanisms when processing nested RAR files sent to an affected device. An attacker could exploit this vulnerability by sending a crafted RAR file to an affected device. An exploit could allow the attacker to view or create arbitrary files on the targeted system. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2019-1785
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-6z7v-bf8c-dbfw |
|
| 31 |
| url |
VCID-74vc-fgtp-muck |
| vulnerability_id |
VCID-74vc-fgtp-muck |
| summary |
Off-by-one error in the cli_hm_scan function in matcher-hash.c in libclamav in ClamAV before 0.97.2 allows remote attackers to cause a denial of service (daemon crash) via an e-mail message that is not properly handled during certain hash calculations. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2011-2721
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-74vc-fgtp-muck |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
| url |
VCID-7mev-x1rm-e7d8 |
| vulnerability_id |
VCID-7mev-x1rm-e7d8 |
| summary |
Double free vulnerability in the vba_read_project_strings function in vba_extract.c in libclamav in ClamAV before 0.97 might allow remote attackers to execute arbitrary code via crafted Visual Basic for Applications (VBA) data in a Microsoft Office document. NOTE: some of these details are obtained from third party information. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2011-1003
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7mev-x1rm-e7d8 |
|
| 36 |
| url |
VCID-7srt-s21q-6qb1 |
| vulnerability_id |
VCID-7srt-s21q-6qb1 |
| summary |
freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of the target file. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-2427
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7srt-s21q-6qb1 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
| url |
VCID-9qj5-5vea-jbbg |
| vulnerability_id |
VCID-9qj5-5vea-jbbg |
| summary |
unrar.c in libclamav in ClamAV before 0.90.3 and 0.91 before 0.91rc1 allows remote attackers to cause a denial of service (core dump) via a crafted RAR file with a modified vm_codesize value, which triggers a heap-based buffer overflow. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-3123
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9qj5-5vea-jbbg |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
| url |
VCID-b1d2-c8en-27he |
| vulnerability_id |
VCID-b1d2-c8en-27he |
| summary |
Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 through 0.60p, and other versions before 0.65, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in the email address argument of a "MAIL FROM" command. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2003-0946
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-b1d2-c8en-27he |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
| url |
VCID-cbmq-pq1j-bydq |
| vulnerability_id |
VCID-cbmq-pq1j-bydq |
| summary |
The Microsoft CHM file parser in ClamAV 0.96.4 and Sophos Anti-Virus 4.61.0 allows remote attackers to bypass malware detection via a crafted reset interval in the LZXC header of a CHM file. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CHM parser implementations. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2012-1458
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cbmq-pq1j-bydq |
|
| 57 |
| url |
VCID-cds4-ea1x-rqdp |
| vulnerability_id |
VCID-cds4-ea1x-rqdp |
| summary |
Integer overflow in the cli_scanpe function in the PE header parser (libclamav/pe.c) in Clam AntiVirus (ClamAV) before 0.88.1, when ArchiveMaxFileSize is disabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-1614
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cds4-ea1x-rqdp |
|
| 58 |
| url |
VCID-cf1g-9m6s-mfa8 |
| vulnerability_id |
VCID-cf1g-9m6s-mfa8 |
| summary |
Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "error path" in (1) libclamav/others.c and (2) libclamav/sis.c. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2008-3914
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cf1g-9m6s-mfa8 |
|
| 59 |
| url |
VCID-cf3x-ahmh-v7gx |
| vulnerability_id |
VCID-cf3x-ahmh-v7gx |
| summary |
The parsing engine in ClamAV before 0.90.3 and 0.91 before 0.91rc1 allows remote attackers to bypass scanning via a RAR file with a header flag value of 10, which can be processed by WinRAR. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-3122
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cf3x-ahmh-v7gx |
|
| 60 |
| url |
VCID-chj2-wpgs-jbhs |
| vulnerability_id |
VCID-chj2-wpgs-jbhs |
| summary |
Multiple memory leaks in freshclam/manager.c in ClamAV before 0.94 might allow attackers to cause a denial of service (memory consumption) via unspecified vectors related to "error handling logic". |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2008-3913
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-chj2-wpgs-jbhs |
|
| 61 |
| url |
VCID-cqkd-v7yy-67bg |
| vulnerability_id |
VCID-cqkd-v7yy-67bg |
| summary |
Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service (file descriptor consumption and failed scans) via CAB archives with a cabinet header record length of zero, which causes a function to return without closing a file descriptor. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-0897
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-cqkd-v7yy-67bg |
|
| 62 |
|
| 63 |
| url |
VCID-d69c-ugbh-13ew |
| vulnerability_id |
VCID-d69c-ugbh-13ew |
| summary |
Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. NOTE: some of these details are obtained from third party information. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2010-3434
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-d69c-ugbh-13ew |
|
| 64 |
|
| 65 |
| url |
VCID-dc5e-7g3m-7yh8 |
| vulnerability_id |
VCID-dc5e-7g3m-7yh8 |
| summary |
Unspecified vulnerability in pdf.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, aka "bb #2380," a different vulnerability than CVE-2010-4260. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2010-4479
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dc5e-7g3m-7yh8 |
|
| 66 |
| url |
VCID-dj1n-qp6c-vuaf |
| vulnerability_id |
VCID-dj1n-qp6c-vuaf |
| summary |
The OLE2 parser in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service (resource consumption) via an OLE2 file with (1) a large property size or (2) a loop in the FAT file block chain that triggers an infinite loop, as demonstrated via a crafted DOC file. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-2650
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dj1n-qp6c-vuaf |
|
| 67 |
| url |
VCID-dxxh-fnay-huh5 |
| vulnerability_id |
VCID-dxxh-fnay-huh5 |
| summary |
The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via a crafted value in a CAB file that causes ClamAV to repeatedly scan the same block. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2005-3500
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dxxh-fnay-huh5 |
|
| 68 |
|
| 69 |
|
| 70 |
|
| 71 |
| url |
VCID-ewh8-xhpd-y7c5 |
| vulnerability_id |
VCID-ewh8-xhpd-y7c5 |
| summary |
Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-4182
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ewh8-xhpd-y7c5 |
|
| 72 |
|
| 73 |
|
| 74 |
|
| 75 |
| url |
VCID-fyza-8dxz-37er |
| vulnerability_id |
VCID-fyza-8dxz-37er |
| summary |
A vulnerability in the Portable Executable (PE) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of proper input and validation checking mechanisms for PE files sent an affected device. An attacker could exploit this vulnerability by sending malformed PE files to the device running an affected version ClamAV Software. An exploit could allow the attacker to cause an out-of-bounds read condition, resulting in a crash that could result in a denial of service condition on an affected device. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2019-1798
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fyza-8dxz-37er |
|
| 76 |
|
| 77 |
| url |
VCID-g4g2-p4s5-4kf1 |
| vulnerability_id |
VCID-g4g2-p4s5-4kf1 |
| summary |
The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2005-3303
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-g4g2-p4s5-4kf1 |
|
| 78 |
| url |
VCID-gksh-bdgf-c3cr |
| vulnerability_id |
VCID-gksh-bdgf-c3cr |
| summary |
The ClamAV Mail fILTER (clamav-milter) 0.84 through 0.85d, when used in Sendmail using long timeouts, allows remote attackers to cause a denial of service by keeping an open connection, which prevents ClamAV from reloading. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2005-2070
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gksh-bdgf-c3cr |
|
| 79 |
|
| 80 |
| url |
VCID-gwg8-h8qn-y3c1 |
| vulnerability_id |
VCID-gwg8-h8qn-y3c1 |
| summary |
The cli_pdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows remote attackers to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2010-1639
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gwg8-h8qn-y3c1 |
|
| 81 |
|
| 82 |
|
| 83 |
|
| 84 |
|
| 85 |
|
| 86 |
|
| 87 |
|
| 88 |
|
| 89 |
|
| 90 |
| url |
VCID-jfja-tzqs-wyen |
| vulnerability_id |
VCID-jfja-tzqs-wyen |
| summary |
The cli_bitset_set function in libclamav/others.c in Clam AntiVirus (ClamAV) before 0.88.1 allows remote attackers to cause a denial of service via unspecified vectors that trigger an "invalid memory access." |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-1630
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-jfja-tzqs-wyen |
|
| 91 |
|
| 92 |
|
| 93 |
|
| 94 |
|
| 95 |
|
| 96 |
|
| 97 |
| url |
VCID-k448-kp97-cbd8 |
| vulnerability_id |
VCID-k448-kp97-cbd8 |
| summary |
The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field that exceeds the total TAR file size. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
|
| aliases |
CVE-2012-1457, PYSEC-2012-25
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-k448-kp97-cbd8 |
|
| 98 |
| url |
VCID-k7ay-zjaz-cyfc |
| vulnerability_id |
VCID-k7ay-zjaz-cyfc |
| summary |
Claim Anti-Virus (ClamAV) 0.68 and earlier allows remote attackers to cause a denial of service (crash) via certain RAR archives, such as those generated by the Beagle/Bagle worm. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2004-1909
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-k7ay-zjaz-cyfc |
|
| 99 |
|
| 100 |
| url |
VCID-khn3-2p1b-23d3 |
| vulnerability_id |
VCID-khn3-2p1b-23d3 |
| summary |
libclamav in ClamAV before 0.94 allows attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an out-of-memory condition. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2008-3912
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-khn3-2p1b-23d3 |
|
| 101 |
|
| 102 |
|
| 103 |
| url |
VCID-kwur-6vdy-8fhj |
| vulnerability_id |
VCID-kwur-6vdy-8fhj |
| summary |
Unspecified vulnerability in libclamav/phishcheck.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1, when running on Solaris, allows remote attackers to cause a denial of service (hang) via unknown vectors related to the isURL function and regular expressions. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-3025
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kwur-6vdy-8fhj |
|
| 104 |
|
| 105 |
|
| 106 |
| url |
VCID-mf5s-xdw7-23ae |
| vulnerability_id |
VCID-mf5s-xdw7-23ae |
| summary |
Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-6481
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mf5s-xdw7-23ae |
|
| 107 |
| url |
VCID-mf6x-gw7y-77fx |
| vulnerability_id |
VCID-mf6x-gw7y-77fx |
| summary |
ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and other products, allows remote attackers to cause a denial of service (application crash) via (1) a crafted RTF file, which triggers a NULL dereference in the cli_scanrtf function in libclamav/rtf.c; or (2) a crafted HTML document with a data: URI, which triggers a NULL dereference in the cli_html_normalise function in libclamav/htmlnorm.c. NOTE: some of these details are obtained from third party information. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-4510
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mf6x-gw7y-77fx |
|
| 108 |
|
| 109 |
|
| 110 |
| url |
VCID-mqcb-rwgw-tug5 |
| vulnerability_id |
VCID-mqcb-rwgw-tug5 |
| summary |
The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/bytecode_api.c. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2011-3627
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mqcb-rwgw-tug5 |
|
| 111 |
|
| 112 |
|
| 113 |
|
| 114 |
| url |
VCID-n9a7-vjm7-6qbu |
| vulnerability_id |
VCID-n9a7-vjm7-6qbu |
| summary |
Multiple format string vulnerabilities in the logging code in Clam AntiVirus (ClamAV) before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized properly. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-1615
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-n9a7-vjm7-6qbu |
|
| 115 |
|
| 116 |
| url |
VCID-nezw-ccjy-qkfh |
| vulnerability_id |
VCID-nezw-ccjy-qkfh |
| summary |
The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2005-1923
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nezw-ccjy-qkfh |
|
| 117 |
|
| 118 |
| url |
VCID-nrmf-959g-5fh7 |
| vulnerability_id |
VCID-nrmf-959g-5fh7 |
| summary |
Heap-based buffer overflow in libclamav/upx.c in Clam Antivirus (ClamAV) before 0.88 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted UPX files. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-0162
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nrmf-959g-5fh7 |
|
| 119 |
|
| 120 |
| url |
VCID-p1rk-pu1x-zfcp |
| vulnerability_id |
VCID-p1rk-pu1x-zfcp |
| summary |
Directory traversal vulnerability in clamd in Clam AntiVirus ClamAV before 0.90 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the id MIME header parameter in a multi-part message. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-0898
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-p1rk-pu1x-zfcp |
|
| 121 |
|
| 122 |
|
| 123 |
|
| 124 |
|
| 125 |
| url |
VCID-p98e-9nq6-17ac |
| vulnerability_id |
VCID-p98e-9nq6-17ac |
| summary |
Heap-based buffer overflow in the pefromupx function in libclamav/upx.c in Clam AntiVirus (ClamAV) 0.81 through 0.88.3 allows remote attackers to execute arbitrary code via a crafted UPX packed file containing sections with large rsize values. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-4018
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-p98e-9nq6-17ac |
|
| 126 |
|
| 127 |
| url |
VCID-ph9g-3tum-fyg3 |
| vulnerability_id |
VCID-ph9g-3tum-fyg3 |
| summary |
Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and earlier allow remote attackers to gain privileges via a crafted e-mail message. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2005-2450
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ph9g-3tum-fyg3 |
|
| 128 |
| url |
VCID-pn73-rckx-3yhc |
| vulnerability_id |
VCID-pn73-rckx-3yhc |
| summary |
freshclam in ClamAV in Apple Mac OS X 10.5.8 with Security Update 2009-005 has an incorrect launchd.plist ProgramArguments key and consequently does not run, which might allow remote attackers to introduce viruses into the system. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2010-0058
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pn73-rckx-3yhc |
|
| 129 |
| url |
VCID-pppa-uub5-gyb6 |
| vulnerability_id |
VCID-pppa-uub5-gyb6 |
| summary |
The Quantum archive decompressor in Clam AntiVirus (ClamAV) before 0.86.1 allows remote attackers to cause a denial of service (application crash) via a crafted Quantum archive. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2005-2056
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-pppa-uub5-gyb6 |
|
| 130 |
|
| 131 |
|
| 132 |
|
| 133 |
| url |
VCID-qs88-k4xt-7qff |
| vulnerability_id |
VCID-qs88-k4xt-7qff |
| summary |
Multiple interpretation error in unspecified versions of ClamAV Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2005-3229
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qs88-k4xt-7qff |
|
| 134 |
|
| 135 |
| url |
VCID-s27u-9u1v-2bea |
| vulnerability_id |
VCID-s27u-9u1v-2bea |
| summary |
Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-6406
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-s27u-9u1v-2bea |
|
| 136 |
|
| 137 |
| url |
VCID-shya-j6d6-7fd5 |
| vulnerability_id |
VCID-shya-j6d6-7fd5 |
| summary |
The MS-Expand file handling in Clam AntiVirus (ClamAV) before 0.86 allows remote attackers to cause a denial of service (file descriptor and memory consumption) via a crafted file that causes repeated errors in the cli_msexpand function. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2005-1922
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-shya-j6d6-7fd5 |
|
| 138 |
|
| 139 |
| url |
VCID-szdg-k2tn-fyfv |
| vulnerability_id |
VCID-szdg-k2tn-fyfv |
| summary |
The "%f" feature in the VirusEvent directive in Clam AntiVirus daemon (clamd) before 0.70 allows local users to execute arbitrary commands via shell metacharacters in a file name. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2004-1876
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-szdg-k2tn-fyfv |
|
| 140 |
|
| 141 |
|
| 142 |
|
| 143 |
|
| 144 |
| url |
VCID-v3zy-ha23-ubcw |
| vulnerability_id |
VCID-v3zy-ha23-ubcw |
| summary |
Clam AntiVirus (ClamAV) 0.88 and earlier allows remote attackers to cause a denial of service (crash) via a malformed base64-encoded MIME attachment that triggers a null pointer dereference. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-5874
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-v3zy-ha23-ubcw |
|
| 145 |
| url |
VCID-vhuw-tb57-e7hb |
| vulnerability_id |
VCID-vhuw-tb57-e7hb |
| summary |
The TAR file parser in ClamAV 0.96.4 and Quick Heal (aka Cat QuickHeal) 11.00 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial [aliases] character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2012-1419
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vhuw-tb57-e7hb |
|
| 146 |
|
| 147 |
|
| 148 |
|
| 149 |
|
| 150 |
|
| 151 |
| url |
VCID-w82v-2zac-pqbn |
| vulnerability_id |
VCID-w82v-2zac-pqbn |
| summary |
The TAR file parser in AhnLab V3 Internet Security 2011.01.18.00, Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, Fortinet Antivirus 4.2.254.0, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, nProtect Anti-Virus 2011-01-17.01, Panda Antivirus 10.0.2.7, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, Sophos Anti-Virus 4.61.0, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field corresponding to that entire entry, plus part of the header of the next entry. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations. |
| references |
| 0 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
|
| aliases |
CVE-2012-1459, PYSEC-2012-26
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w82v-2zac-pqbn |
|
| 152 |
|
| 153 |
|
| 154 |
|
| 155 |
|
| 156 |
| url |
VCID-xcst-4y7t-yuah |
| vulnerability_id |
VCID-xcst-4y7t-yuah |
| summary |
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2006-1989
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xcst-4y7t-yuah |
|
| 157 |
|
| 158 |
| url |
VCID-xym3-y1vf-kug5 |
| vulnerability_id |
VCID-xym3-y1vf-kug5 |
| summary |
ClamAV 0.94.1 and possibly 0.93.1, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing a CVE-2006-5745 exploit. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2008-5525
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-xym3-y1vf-kug5 |
|
| 159 |
| url |
VCID-y9pg-8a8t-uye1 |
| vulnerability_id |
VCID-y9pg-8a8t-uye1 |
| summary |
The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero length. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2005-3501
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-y9pg-8a8t-uye1 |
|
| 160 |
|
| 161 |
| url |
VCID-ypf8-kvuk-tudq |
| vulnerability_id |
VCID-ypf8-kvuk-tudq |
| summary |
Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2013-2020
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ypf8-kvuk-tudq |
|
| 162 |
|
| 163 |
| url |
VCID-z22n-3rmf-f7az |
| vulnerability_id |
VCID-z22n-3rmf-f7az |
| summary |
libclamav/others.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files. |
| references |
|
| fixed_packages |
|
| aliases |
CVE-2007-3024
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-z22n-3rmf-f7az |
|
| 164 |
| url |
VCID-z5wy-149x-dqhs |
| vulnerability_id |
VCID-z5wy-149x-dqhs |
| summary |
ClamAV versions prior to 0.103.0-rc contain a vulnerability in function name processing through the ClamBC bytecode interpreter that allows attackers to manipulate bytecode function names. Attackers can exploit the weak input validation in function name encoding to potentially execute malicious bytecode or cause unexpected behavior in the ClamAV engine. |
| references |
| 0 |
|
| 1 |
|
| 2 |
| reference_url |
https://www.exploit-db.com/exploits/47687 |
| reference_id |
47687 |
| reference_type |
|
| scores |
| 0 |
| value |
8.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
Track* |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T17:08:35Z/ |
|
|
| url |
https://www.exploit-db.com/exploits/47687 |
|
| 3 |
|
| 4 |
|
| 5 |
| reference_url |
https://www.clamav.net/ |
| reference_id |
www.clamav.net |
| reference_type |
|
| scores |
| 0 |
| value |
8.4 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
8.6 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
Track* |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2026-02-13T17:08:35Z/ |
|
|
| url |
https://www.clamav.net/ |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-37167
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-z5wy-149x-dqhs |
|
| 165 |
|
| 166 |
|