Clamav

Clamav

104 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 7.59%
  • Veröffentlicht 23.04.2009 15:30:00
  • Zuletzt bearbeitet 16.06.2026 23:07:08

Stack-based buffer overflow in the cli_url_canon function in libclamav/phishcheck.c in ClamAV before 0.95.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted URL.

  • EPSS 3.72%
  • Veröffentlicht 08.04.2009 16:30:00
  • Zuletzt bearbeitet 16.06.2026 23:02:45

libclamav/pe.c in ClamAV before 0.95 allows remote attackers to cause a denial of service (crash) via a crafted EXE file that triggers a divide-by-zero error.

  • EPSS 5.07%
  • Veröffentlicht 08.04.2009 16:30:00
  • Zuletzt bearbeitet 16.06.2026 23:06:54

libclamav/untar.c in ClamAV before 0.95 allows remote attackers to cause a denial of service (infinite loop) via a crafted TAR file that causes (1) clamd and (2) clamscan to hang.

  • EPSS 3.92%
  • Veröffentlicht 03.04.2009 18:30:00
  • Zuletzt bearbeitet 16.06.2026 23:06:50

Unspecified vulnerability in ClamAV before 0.95 allows remote attackers to bypass detection of malware via a modified RAR archive.

  • EPSS 2.88%
  • Veröffentlicht 12.12.2008 18:30:02
  • Zuletzt bearbeitet 16.06.2026 23:00:28

ClamAV 0.94.1 and possibly 0.93.1, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no ...

  • EPSS 3.1%
  • Veröffentlicht 11.09.2008 01:13:41
  • Zuletzt bearbeitet 16.06.2026 22:56:47

libclamav in ClamAV before 0.94 allows attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to an out-of-memory condition.

  • EPSS 3.06%
  • Veröffentlicht 11.09.2008 01:13:41
  • Zuletzt bearbeitet 16.06.2026 22:56:47

Multiple memory leaks in freshclam/manager.c in ClamAV before 0.94 might allow attackers to cause a denial of service (memory consumption) via unspecified vectors related to "error handling logic".

  • EPSS 3.58%
  • Veröffentlicht 11.09.2008 01:13:41
  • Zuletzt bearbeitet 16.06.2026 22:56:48

Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "error path" in (1) libclamav/others.c and (2) libclamav/sis.c.

  • EPSS 2.82%
  • Veröffentlicht 12.02.2008 20:00:00
  • Zuletzt bearbeitet 16.06.2026 22:50:13

The unmew11 function in libclamav/mew.c in libclamav in ClamAV before 0.92.1 has unknown impact and attack vectors that trigger "heap corruption."

  • EPSS 3.25%
  • Veröffentlicht 14.05.2007 21:19:00
  • Zuletzt bearbeitet 16.06.2026 22:40:02

The OLE2 parser in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service (resource consumption) via an OLE2 file with (1) a large property size or (2) a loop in the FAT file block chain that triggers an infinite loop, as demons...