4.3

CVE-2011-3627

The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/bytecode_api.c.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ClamavClamav Version <= 0.97.2
ClamavClamav Version0.9 Updaterc1
ClamavClamav Version0.90
ClamavClamav Version0.90 Updaterc1
ClamavClamav Version0.90 Updaterc1.1
ClamavClamav Version0.90 Updaterc2
ClamavClamav Version0.90 Updaterc3
ClamavClamav Version0.90.1
ClamavClamav Version0.90.2
ClamavClamav Version0.90.3
ClamavClamav Version0.91
ClamavClamav Version0.91 Updaterc1
ClamavClamav Version0.91 Updaterc2
ClamavClamav Version0.91.1
ClamavClamav Version0.91.2
ClamavClamav Version0.92
ClamavClamav Version0.92.1
ClamavClamav Version0.93
ClamavClamav Version0.93.1
ClamavClamav Version0.93.2
ClamavClamav Version0.93.3
ClamavClamav Version0.94
ClamavClamav Version0.94.1
ClamavClamav Version0.94.2
ClamavClamav Version0.95
ClamavClamav Version0.95 Updaterc1
ClamavClamav Version0.95 Updaterc2
ClamavClamav Version0.95 Updatesrc1
ClamavClamav Version0.95 Updatesrc2
ClamavClamav Version0.95.1
ClamavClamav Version0.95.2
ClamavClamav Version0.95.3
ClamavClamav Version0.96
ClamavClamav Version0.96 Updaterc1
ClamavClamav Version0.96 Updaterc2
ClamavClamav Version0.96.1
ClamavClamav Version0.96.2
ClamavClamav Version0.96.3
ClamavClamav Version0.96.4
ClamavClamav Version0.96.5
ClamavClamav Version0.97
ClamavClamav Version0.97 Updaterc
ClamavClamav Version0.97.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.64% 0.837
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068940.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068941.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068942.html
http://secunia.com/advisories/46717
Vendor Advisory
http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commitdiff%3Bh=3d664817f6ef833a17414a4ecea42004c35cc42f
http://secunia.com/advisories/46826
Vendor Advisory
http://www.openwall.com/lists/oss-security/2011/10/18/1
http://www.securityfocus.com/bid/50183
http://www.ubuntu.com/usn/USN-1258-1
https://bugzilla.redhat.com/show_bug.cgi?id=746984