CVE-2010-4479
- EPSS 4.87%
- Veröffentlicht 07.12.2010 13:53:30
- Zuletzt bearbeitet 16.06.2026 23:24:53
Unspecified vulnerability in pdf.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, aka "bb #2380," a different vulnerability ...
- EPSS 4.9%
- Veröffentlicht 07.12.2010 13:53:29
- Zuletzt bearbeitet 16.06.2026 23:24:27
Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV before 0.96.5 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, aka (1) "bb #2358" and (2) "bb #...
CVE-2010-4261
- EPSS 4.77%
- Veröffentlicht 07.12.2010 13:53:29
- Zuletzt bearbeitet 16.06.2026 23:24:27
Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors. NO...
CVE-2010-3434
- EPSS 6.53%
- Veröffentlicht 30.09.2010 15:00:04
- Zuletzt bearbeitet 16.06.2026 23:22:45
Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. NOTE: some of th...
CVE-2010-1639
- EPSS 2.89%
- Veröffentlicht 26.05.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:18:45
The cli_pdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows remote attackers to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length.
CVE-2010-1640
- EPSS 2.89%
- Veröffentlicht 26.05.2010 18:30:01
- Zuletzt bearbeitet 16.06.2026 23:18:45
Off-by-one error in the parseicon function in libclamav/pe_icons.c in ClamAV 0.96 allows remote attackers to cause a denial of service (crash) via a crafted PE icon that triggers an out-of-bounds read, related to improper rounding during scaling.
- EPSS 4.89%
- Veröffentlicht 08.04.2010 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:15:28
ClamAV before 0.96 does not properly handle the (1) CAB and (2) 7z file formats, which allows remote attackers to bypass virus detection via a crafted archive that is compatible with standard archive utilities.
- EPSS 3.35%
- Veröffentlicht 08.04.2010 17:30:00
- Zuletzt bearbeitet 16.06.2026 23:18:04
The qtm_decompress function in libclamav/mspack.c in ClamAV before 0.96 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted CAB archive that uses the Quantum (aka .Q) compression format. NOTE:...
- EPSS 2.21%
- Veröffentlicht 02.07.2009 10:30:00
- Zuletzt bearbeitet 16.06.2026 23:03:05
The unpack feature in ClamAV 0.93.3 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a corrupted LZH file.
- EPSS 3.42%
- Veröffentlicht 23.04.2009 15:30:00
- Zuletzt bearbeitet 16.06.2026 23:07:08
The CLI_ISCONTAINED macro in libclamav/others.h in ClamAV before 0.95.1 allows remote attackers to cause a denial of service (application crash) via a malformed file with UPack encoding.