CVE-2008-3914

EPSS 2.01%
Veröffentlicht 11.09.2008 01:13:41
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "error path" in (1) libclamav/others.c and (2) libclamav/sis.c.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 29

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Clamav ≫ Clamav Version <= 0.93.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	2.01%	0.83

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog

Vendor Advisory

http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

Third Party Advisory

Mailing List

http://secunia.com/advisories/32222

Third Party Advisory

http://support.apple.com/kb/HT3216

Third Party Advisory

http://www.securityfocus.com/bid/31681

Third Party Advisory

VDB Entry

http://www.vupen.com/english/advisories/2008/2780

Permissions Required

http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html

Third Party Advisory

Mailing List

http://secunia.com/advisories/31982

Third Party Advisory

http://kolab.org/security/kolab-vendor-notice-22.txt

Third Party Advisory

http://secunia.com/advisories/31906

Third Party Advisory

http://secunia.com/advisories/32030

Third Party Advisory

http://secunia.com/advisories/32699

Third Party Advisory

http://security.gentoo.org/glsa/glsa-200809-18.xml

Third Party Advisory

http://sourceforge.net/project/shownotes.php?group_id=86638&release_id=623661

Patch

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2008:189

Third Party Advisory

http://www.vupen.com/english/advisories/2008/2564

Permissions Required

https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00332.html

Third Party Advisory

https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00348.html

Third Party Advisory

http://secunia.com/advisories/32424

Third Party Advisory

http://www.debian.org/security/2008/dsa-1660

Third Party Advisory

http://www.openwall.com/lists/oss-security/2008/09/03/2

Third Party Advisory

Mailing List

http://www.openwall.com/lists/oss-security/2008/09/04/13

Mailing List

http://www.securityfocus.com/bid/31051

Patch

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id?1020828

Third Party Advisory

VDB Entry

https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1141

Issue Tracking

https://exchange.xforce.ibmcloud.com/vulnerabilities/45058

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2008-3914

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-3914

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-3914

EUVD