Clam Anti-virus

Clamav

60 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2006-0162

  • EPSS 28%
  • Veröffentlicht 10.01.2006 19:03:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Heap-based buffer overflow in libclamav/upx.c in Clam Antivirus (ClamAV) before 0.88 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted UPX files.

10

CVE-2005-3587

  • EPSS 0.37%
  • Veröffentlicht 16.11.2005 07:42:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Improper boundary checks in petite.c in Clam AntiVirus (ClamAV) before 0.87.1 allows attackers to perform unknown attacks via unknown vectors.

5

CVE-2005-3500

  • EPSS 5.94%
  • Veröffentlicht 05.11.2005 11:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via a crafted value in a CAB file that causes ClamAV to repeatedly scan the sa...

7.5

CVE-2005-3303

  • EPSS 9.94%
  • Veröffentlicht 05.11.2005 11:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file.

7.8

CVE-2005-3239

  • EPSS 4.59%
  • Veröffentlicht 14.10.2005 19:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The OLE2 unpacker in clamd in Clam AntiVirus (ClamAV) 0.87-1 allows remote attackers to cause a denial of service (segmentation fault) via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2_walk_property_tree f...

7.5

CVE-2005-2920

  • EPSS 14.21%
  • Veröffentlicht 20.09.2005 23:03:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Buffer overflow in libclamav/upx.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable.

5

CVE-2005-2919

  • EPSS 2.91%
  • Veröffentlicht 20.09.2005 23:03:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

libclamav/fsg.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to cause a denial of service (infinite loop) via a crafted FSG packed executable.

7.5

CVE-2005-2450

  • EPSS 3.64%
  • Veröffentlicht 03.08.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and earlier allow remote attackers to gain privileges via a crafted e-mail message.

2.6

CVE-2005-1923

  • EPSS 0.66%
  • Veröffentlicht 05.07.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field se...

5

CVE-2005-1922

  • EPSS 0.74%
  • Veröffentlicht 05.07.2005 04:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The MS-Expand file handling in Clam AntiVirus (ClamAV) before 0.86 allows remote attackers to cause a denial of service (file descriptor and memory consumption) via a crafted file that causes repeated errors in the cli_msexpand function.