Clamav

Clamav

104 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 4.87%
  • Veröffentlicht 07.12.2010 13:53:30
  • Zuletzt bearbeitet 16.06.2026 23:24:53

Unspecified vulnerability in pdf.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, aka "bb #2380," a different vulnerability ...

  • EPSS 4.9%
  • Veröffentlicht 07.12.2010 13:53:29
  • Zuletzt bearbeitet 16.06.2026 23:24:27

Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV before 0.96.5 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, aka (1) "bb #2358" and (2) "bb #...

  • EPSS 4.77%
  • Veröffentlicht 07.12.2010 13:53:29
  • Zuletzt bearbeitet 16.06.2026 23:24:27

Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors. NO...

  • EPSS 6.53%
  • Veröffentlicht 30.09.2010 15:00:04
  • Zuletzt bearbeitet 16.06.2026 23:22:45

Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. NOTE: some of th...

  • EPSS 2.89%
  • Veröffentlicht 26.05.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:18:45

The cli_pdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows remote attackers to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length.

  • EPSS 2.89%
  • Veröffentlicht 26.05.2010 18:30:01
  • Zuletzt bearbeitet 16.06.2026 23:18:45

Off-by-one error in the parseicon function in libclamav/pe_icons.c in ClamAV 0.96 allows remote attackers to cause a denial of service (crash) via a crafted PE icon that triggers an out-of-bounds read, related to improper rounding during scaling.

  • EPSS 4.89%
  • Veröffentlicht 08.04.2010 17:30:00
  • Zuletzt bearbeitet 16.06.2026 23:15:28

ClamAV before 0.96 does not properly handle the (1) CAB and (2) 7z file formats, which allows remote attackers to bypass virus detection via a crafted archive that is compatible with standard archive utilities.

  • EPSS 3.35%
  • Veröffentlicht 08.04.2010 17:30:00
  • Zuletzt bearbeitet 16.06.2026 23:18:04

The qtm_decompress function in libclamav/mspack.c in ClamAV before 0.96 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted CAB archive that uses the Quantum (aka .Q) compression format. NOTE:...

  • EPSS 2.21%
  • Veröffentlicht 02.07.2009 10:30:00
  • Zuletzt bearbeitet 16.06.2026 23:03:05

The unpack feature in ClamAV 0.93.3 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a corrupted LZH file.

  • EPSS 3.42%
  • Veröffentlicht 23.04.2009 15:30:00
  • Zuletzt bearbeitet 16.06.2026 23:07:08

The CLI_ISCONTAINED macro in libclamav/others.h in ClamAV before 0.95.1 allows remote attackers to cause a denial of service (application crash) via a malformed file with UPack encoding.