Clamav

Clamav

97 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2018-1000085

  • EPSS 0.7%
  • Veröffentlicht 13.03.2018 15:29:01
  • Zuletzt bearbeitet 21.11.2024 03:39:36

ClamAV version version 0.99.3 contains a Out of bounds heap memory read vulnerability in XAR parser, function xar_hash_check() that can result in Leaking of memory, may help in developing exploit chains.. This attack appear to be exploitable via The ...

7.8

CVE-2017-12380

Exploit
  • EPSS 8.98%
  • Veröffentlicht 26.01.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:09:25

ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation...

10

CVE-2017-12379

Exploit
  • EPSS 8.05%
  • Veröffentlicht 26.01.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:09:25

ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or potentially execute arbitrary code on an affected device. The vulnerabili...

7.1

CVE-2017-12378

Exploit
  • EPSS 5.1%
  • Veröffentlicht 26.01.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:09:25

ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation...

10

CVE-2017-12377

Exploit
  • EPSS 11.42%
  • Veröffentlicht 26.01.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:09:25

ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or potentially execute arbitrary code on an affected device. The vulnerabili...

9.3

CVE-2017-12376

Exploit
  • EPSS 9.9%
  • Veröffentlicht 26.01.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:09:24

ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or potentially execute arbitrary code on an affected device. The vulnerabili...

7.8

CVE-2017-12375

Exploit
  • EPSS 6.46%
  • Veröffentlicht 26.01.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:09:24

The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of input valid...

7.8

CVE-2017-12374

Exploit
  • EPSS 4.84%
  • Veröffentlicht 26.01.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:09:24

The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of input valid...

5.5

CVE-2017-6420

  • EPSS 0.38%
  • Veröffentlicht 07.08.2017 03:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

The wwunpack function in libclamav/wwunpack.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service (use-after-free) via a crafted PE file with WWPack compression.

5.5

CVE-2017-6418

  • EPSS 0.5%
  • Veröffentlicht 07.08.2017 03:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

libclamav/message.c in ClamAV 0.99.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted e-mail message.