Clamav

Clamav

96 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2019-1798

Exploit
  • EPSS 4.51%
  • Veröffentlicht 08.04.2019 20:29:11
  • Zuletzt bearbeitet 21.11.2024 04:37:24

A vulnerability in the Portable Executable (PE) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. T...

5.5

CVE-2019-1788

Exploit
  • EPSS 13.76%
  • Veröffentlicht 08.04.2019 20:29:11
  • Zuletzt bearbeitet 21.11.2024 04:37:22

A vulnerability in the Object Linking & Embedding (OLE2) file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected ...

5.5

CVE-2019-1786

  • EPSS 6.95%
  • Veröffentlicht 08.04.2019 19:29:05
  • Zuletzt bearbeitet 21.11.2024 04:37:22

A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected ...

7.8

CVE-2019-1785

  • EPSS 2.25%
  • Veröffentlicht 08.04.2019 19:29:05
  • Zuletzt bearbeitet 21.11.2024 04:37:22

A vulnerability in the RAR file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is...

5.5

CVE-2019-1787

Exploit
  • EPSS 2.57%
  • Veröffentlicht 08.04.2019 19:29:05
  • Zuletzt bearbeitet 21.11.2024 04:37:22

A vulnerability in the Portable Document Format (PDF) scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected de...

5.5

CVE-2018-15378

  • EPSS 1.86%
  • Veröffentlicht 15.10.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:50:39

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service (DoS) condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11()" function (libclamav/mew.c), which can be...

4.3

CVE-2018-0361

  • EPSS 0.64%
  • Veröffentlicht 16.07.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:38:03

ClamAV before 0.100.1 lacks a PDF object length check, resulting in an unreasonably long time to parse a relatively small file.

5.5

CVE-2018-0360

  • EPSS 1.41%
  • Veröffentlicht 16.07.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 03:38:03

ClamAV before 0.100.1 has an HWP integer overflow with a resultant infinite loop via a crafted Hangul Word Processor file. This is in parsehwp3_paragraph() in libclamav/hwp.c.

5.5

CVE-2018-0202

  • EPSS 2.65%
  • Veröffentlicht 27.03.2018 09:29:00
  • Zuletzt bearbeitet 21.11.2024 03:37:43

clamscan in ClamAV before 0.99.4 contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation checking mechanis...

5.5

CVE-2018-1000085

  • EPSS 0.9%
  • Veröffentlicht 13.03.2018 15:29:01
  • Zuletzt bearbeitet 21.11.2024 03:39:36

ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xar_hash_check() that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The ...