VulnerableCode Vulnerability Details

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-9zc3-mqdn-ufd2

Vulnerability ID	VCID-9zc3-mqdn-ufd2
Aliases	CVE-2006-4182
Summary	ClamAV is vulnerable to a heap-based buffer overflow potentially allowing remote execution of arbitrary code and a Denial of Service.
Status	Published
Exploitability	2.0
Weighted Severity	0.1
Risk	0.2
Affected and Fixed Packages	Package Details

Weaknesses (0)

There are no known CWE.

System	Score	Found at
epss	0.16623	https://api.first.org/data/v1/epss?cve=CVE-2006-4182
epss	0.16623	https://api.first.org/data/v1/epss?cve=CVE-2006-4182
epss	0.16623	https://api.first.org/data/v1/epss?cve=CVE-2006-4182
epss	0.16623	https://api.first.org/data/v1/epss?cve=CVE-2006-4182
epss	0.16623	https://api.first.org/data/v1/epss?cve=CVE-2006-4182
epss	0.16623	https://api.first.org/data/v1/epss?cve=CVE-2006-4182
epss	0.16623	https://api.first.org/data/v1/epss?cve=CVE-2006-4182
epss	0.16623	https://api.first.org/data/v1/epss?cve=CVE-2006-4182
epss	0.16623	https://api.first.org/data/v1/epss?cve=CVE-2006-4182

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2006-4182
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4182
393445		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=393445
GLSA-200610-10		https://security.gentoo.org/glsa/200610-10
OSVDB-29773;CVE-2006-4182	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/2587.txt

Data source	Exploit-DB
Date added	Oct. 16, 2006
Description	Clam AntiVirus 0.88.4 - 'rebuildpe' Remote Heap Overflow (PoC)
Ransomware campaign use	Known
Source publication date	Oct. 17, 2006
Exploit type	dos
Platform	multiple
Source update date	Aug. 14, 2017

There are no known vectors.

Exploit Prediction Scoring System (EPSS)

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:04:36.258602+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/200610-10	38.0.0