CVE-2005-2056
- EPSS 2.34%
- Veröffentlicht 29.06.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:14:09
The Quantum archive decompressor in Clam AntiVirus (ClamAV) before 0.86.1 allows remote attackers to cause a denial of service (application crash) via a crafted Quantum archive.
CVE-2005-1800
- EPSS 3.06%
- Veröffentlicht 28.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:13:42
Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to index.php.
CVE-2005-1795
- EPSS 3.64%
- Veröffentlicht 27.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:13:42
The filecopy function in misc.c in Clam AntiVirus (ClamAV) before 0.85, on Mac OS, allows remote attackers to execute arbitrary code via a virus in a filename that contains shell metacharacters, which are not properly handled when HFS permissions pre...
CVE-2005-1711
- EPSS 1.05%
- Veröffentlicht 24.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:13:32
Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses from being detected.
- EPSS 2.43%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:10:43
ClamAV 0.80 and earlier allows remote attackers to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL.
- EPSS 2.55%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:10:34
ClamAV 0.80 and earlier allows remote attackers to cause a denial of service (clamd daemon crash) via a ZIP file with malformed headers.
CVE-2004-1909
- EPSS 1.41%
- Veröffentlicht 31.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:08:38
Claim Anti-Virus (ClamAV) 0.68 and earlier allows remote attackers to cause a denial of service (crash) via certain RAR archives, such as those generated by the Beagle/Bagle worm.
- EPSS 10.41%
- Veröffentlicht 23.11.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:17
libclamav in Clam AntiVirus 0.65 allows remote attackers to cause a denial of service (crash) via a uuencoded e-mail message with an invalid line length (e.g., a lowercase character), which causes an assert error in clamd that terminates the calling ...
CVE-2004-1876
- EPSS 0.59%
- Veröffentlicht 30.03.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:08:34
The "%f" feature in the VirusEvent directive in Clam AntiVirus daemon (clamd) before 0.70 allows local users to execute arbitrary commands via shell metacharacters in a file name.
CVE-2003-0946
- EPSS 3.11%
- Veröffentlicht 15.12.2003 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:03:13
Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 through 0.60p, and other versions before 0.65, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in the email add...