Search for vulnerabilities
| Vulnerability ID | VCID-u4q5-6h15-guf2 |
| Aliases |
CVE-2005-3229
|
| Summary | Multiple interpretation error in unspecified versions of ClamAV Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper. |
| Status | Published |
| Exploitability | None |
| Weighted Severity | None |
| Risk | None |
| Affected and Fixed Packages | Package Details |
| There are no known CWE. |
| System | Score | Found at |
|---|---|---|
| epss | 0.00302 | https://api.first.org/data/v1/epss?cve=CVE-2005-3229 |
| epss | 0.00302 | https://api.first.org/data/v1/epss?cve=CVE-2005-3229 |
| epss | 0.00302 | https://api.first.org/data/v1/epss?cve=CVE-2005-3229 |
| epss | 0.00302 | https://api.first.org/data/v1/epss?cve=CVE-2005-3229 |
| epss | 0.00302 | https://api.first.org/data/v1/epss?cve=CVE-2005-3229 |
| epss | 0.00302 | https://api.first.org/data/v1/epss?cve=CVE-2005-3229 |
| epss | 0.00302 | https://api.first.org/data/v1/epss?cve=CVE-2005-3229 |
| epss | 0.00302 | https://api.first.org/data/v1/epss?cve=CVE-2005-3229 |
| epss | 0.00302 | https://api.first.org/data/v1/epss?cve=CVE-2005-3229 |
| cvssv2 | 5.1 | https://nvd.nist.gov/vuln/detail/CVE-2005-3229 |
| Reference id | Reference type | URL |
|---|---|---|
| http://marc.info/?l=bugtraq&m=112879611919750&w=2 | ||
| https://api.first.org/data/v1/epss?cve=CVE-2005-3229 | ||
| http://shadock.net/secubox/AVCraftedArchive.html | ||
| cpe:2.3:a:clam_anti-virus:clamav:0.90.2:*:*:*:*:*:*:* | https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:clam_anti-virus:clamav:0.90.2:*:*:*:*:*:*:* | |
| CVE-2005-3229 | https://nvd.nist.gov/vuln/detail/CVE-2005-3229 |
| Exploitability (E) | Access Vector (AV) | Access Complexity (AC) | Authentication (Au) | Confidentiality Impact (C) | Integrity Impact (I) | Availability Impact (A) |
|---|---|---|---|---|---|---|
high functional unproven proof_of_concept not_defined |
local adjacent_network network |
high medium low |
multiple single none |
none partial complete |
none partial complete |
none partial complete |
| Percentile | 0.53486 |
| EPSS Score | 0.00302 |
| Published At | April 1, 2026, 12:55 p.m. |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| 2026-04-01T17:28:42.493134+00:00 | NVD Importer | Import | https://nvd.nist.gov/vuln/detail/CVE-2005-3229 | 38.0.0 |