Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clam anti-virus clamav 0.88 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-1989
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.88
NA
CVE-2006-5874
Clam AntiVirus (ClamAV) 0.88 and previous versions allows remote malicious users to cause a denial of service (crash) via a malformed base64-encoded MIME attachment that triggers a null pointer dereference.
Clam Anti-virus Clamav .
Clam Anti-virus Clamav 0.82
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.86.1
Clam Anti-virus Clamav 0.86.2
Clam Anti-virus Clamav 0.80
Clam Anti-virus Clamav 0.80 Rc1
Clam Anti-virus Clamav 0.80 Rc2
Clam Anti-virus Clamav 0.84
Clam Anti-virus Clamav 0.84 Rc1
Clam Anti-virus Clamav 0.86 Rc1
Clam Anti-virus Clamav 0.87
Clam Anti-virus Clamav 0.80 Rc3
Clam Anti-virus Clamav 0.80 Rc4
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.87.1
Clam Anti-virus Clamav
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.81 Rc1
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
NA
CVE-2006-1614
Integer overflow in the cli_scanpe function in the PE header parser (libclamav/pe.c) in Clam AntiVirus (ClamAV) prior to 0.88.1, when ArchiveMaxFileSize is disabled, allows remote malicious users to cause a denial of service and possibly execute arbitrary code.
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.68
Clam Anti-virus Clamav 0.68.1
Clam Anti-virus Clamav 0.80 Rc4
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.80
Clam Anti-virus Clamav 0.80 Rc1
Clam Anti-virus Clamav 0.84
Clam Anti-virus Clamav 0.84 Rc1
Clam Anti-virus Clamav 0.87
Clam Anti-virus Clamav 0.87.1
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.80 Rc2
Clam Anti-virus Clamav 0.80 Rc3
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.88
NA
CVE-2006-1630
The cli_bitset_set function in libclamav/others.c in Clam AntiVirus (ClamAV) prior to 0.88.1 allows remote malicious users to cause a denial of service via unspecified vectors that trigger an "invalid memory access."
Clam Anti-virus Clamav 0.51
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.68.1
Clam Anti-virus Clamav 0.70
Clam Anti-virus Clamav 0.82
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.86.1
Clam Anti-virus Clamav 0.86.2
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.80 Rc1
Clam Anti-virus Clamav 0.80 Rc2
Clam Anti-virus Clamav 0.80 Rc3
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.88
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.68
Clam Anti-virus Clamav 0.80 Rc4
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
NA
CVE-2006-2427
freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and previous versions does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of...
Clam Anti-virus Clamxav 1.0.3h
Clam Anti-virus Clamav 0.88
NA
CVE-2008-5314
Stack consumption vulnerability in libclamav/special.c in ClamAV prior to 0.94.2 allows remote malicious users to cause a denial of service (daemon crash) via a crafted JPEG file, related to the cli_check_jpeg_exploit, jpeg_check_photoshop, and jpeg_check_photoshop_8bim functions...
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.91.2
Clam Anti-virus Clamav 0.88.6
Clam Anti-virus Clamav 0.88.5
Clam Anti-virus Clamav 0.87
Clam Anti-virus Clamav 0.86.2
Clam Anti-virus Clamav 0.84
Clam Anti-virus Clamav 0.93.3
Clam Anti-virus Clamav 0.93.1
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.88.2
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.86
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.80
Clam Anti-virus Clamav 0.74
Clam Anti-virus Clamav 0.73
Clam Anti-virus Clamav 0.93
Clam Anti-virus Clamav 0.92.1
Clam Anti-virus Clamav 0.90
1 EDB exploit
NA
CVE-2007-0898
Directory traversal vulnerability in clamd in Clam AntiVirus ClamAV prior to 0.90 allows remote malicious users to overwrite arbitrary files via a .. (dot dot) in the id MIME header parameter in a multi-part message.
Clam Anti-virus Clamav 0.21
Clam Anti-virus Clamav 0.22
Clam Anti-virus Clamav 0.23
Clam Anti-virus Clamav 0.60p
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.73
Clam Anti-virus Clamav 0.74
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.68.1
Clam Anti-virus Clamav 0.70
Clam Anti-virus Clamav 0.80
Clam Anti-virus Clamav 0.80 Rc1
Clam Anti-virus Clamav 0.84
Clam Anti-virus Clamav 0.84 Rc1
Clam Anti-virus Clamav 0.86 Rc1
Clam Anti-virus Clamav 0.87
Clam Anti-virus Clamav 0.15
Clam Anti-virus Clamav 0.20
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.71
NA
CVE-2006-4182
Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions prior to 0.88.5, allows remote malicious users to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow ...
Clam Anti-virus Clamav 0.20
Clam Anti-virus Clamav 0.21
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.72
Clam Anti-virus Clamav 0.73
Clam Anti-virus Clamav 0.80 Rc3
Clam Anti-virus Clamav 0.80 Rc4
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.88
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav .
Clam Anti-virus Clamav 0.15
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.70
Clam Anti-virus Clamav 0.71
Clam Anti-virus Clamav 0.80 Rc1
Clam Anti-virus Clamav 0.80 Rc2
Clam Anti-virus Clamav 0.84
1 EDB exploit
NA
CVE-2006-5295
Unspecified vulnerability in ClamAV prior to 0.88.5 allows remote malicious users to cause a denial of service (scanning service crash) via a crafted Compressed HTML Help (CHM) file that causes ClamAV to "read an invalid memory location."
Clam Anti-virus Clamav 0.15
Clam Anti-virus Clamav 0.20
Clam Anti-virus Clamav 0.21
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.71
Clam Anti-virus Clamav 0.72
Clam Anti-virus Clamav 0.80 Rc2
Clam Anti-virus Clamav 0.80 Rc3
Clam Anti-virus Clamav 0.80 Rc4
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.87.1
Clam Anti-virus Clamav 0.88
Clam Anti-virus Clamav .
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.68.1
Clam Anti-virus Clamav 0.70
Clam Anti-virus Clamav 0.80
Clam Anti-virus Clamav 0.80 Rc1
Clam Anti-virus Clamav 0.84
1 EDB exploit
NA
CVE-2006-0162
Heap-based buffer overflow in libclamav/upx.c in Clam Antivirus (ClamAV) prior to 0.88 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via crafted UPX files.
Clam Anti-virus Clamav 0.51
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.70
Clam Anti-virus Clamav 0.75.1
Clam Anti-virus Clamav 0.82
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.86.2
Clam Anti-virus Clamav 0.87
Clam Anti-virus Clamav .
Clam Anti-virus Clamav 0.68
Clam Anti-virus Clamav 0.68.1
Clam Anti-virus Clamav 0.80 Rc4
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
Clam Anti-virus Clamav 0.86.1
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.80 Rc2
Clam Anti-virus Clamav 0.80 Rc3
Clam Anti-virus Clamav 0.84 Rc2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »