5
CVE-2007-6596
- EPSS 2.33%
- Veröffentlicht 31.12.2007 19:46:00
- Zuletzt bearbeitet 16.06.2026 22:48:24
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass the scanner via a Base64-UUEncoded file.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Clam Anti-virus ≫ Clamav Version0.92
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.33% | 0.813 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.html
http://secunia.com/advisories/29891
http://securityreason.com/securityalert/3501
http://www.securityfocus.com/archive/1/485631/100/0/threaded
http://www.securityfocus.com/bid/27064
http://www.securitytracker.com/id?1019148
https://exchange.xforce.ibmcloud.com/vulnerabilities/39337