Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav clamav 0.92 vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-1100
Buffer overflow in the cli_scanpe function in libclamav (libclamav/pe.c) for ClamAV 0.92 and 0.92.1 allows remote malicious users to execute arbitrary code via a crafted Upack PE file.
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.92.1
4.3
CVSSv2
CVE-2011-3627
The bytecode engine in ClamAV prior to 0.97.3 allows remote malicious users to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/bytecode_api.c.
Clamav Clamav 0.95.2
Clamav Clamav 0.92
Clamav Clamav 0.95
Clamav Clamav 0.90
Clamav Clamav 0.97
Clamav Clamav 0.93.1
Clamav Clamav 0.95.1
Clamav Clamav
Clamav Clamav 0.93
Clamav Clamav 0.96.4
Clamav Clamav 0.9
Clamav Clamav 0.93.3
Clamav Clamav 0.91
Clamav Clamav 0.94
Clamav Clamav 0.91.2
Clamav Clamav 0.96.3
Clamav Clamav 0.90.3
Clamav Clamav 0.96.2
Clamav Clamav 0.94.2
Clamav Clamav 0.96.1
Clamav Clamav 0.96
Clamav Clamav 0.96.5
4.3
CVSSv2
CVE-2008-1836
The rfc2231 function in message.c in libclamav in ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (crash) via a crafted message that produces a string that is not null terminated, which triggers a buffer over-read.
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.91
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
4.3
CVSSv2
CVE-2008-1387
ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (CPU consumption) via a crafted ARJ archive, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.91
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
2.1
CVSSv2
CVE-2007-6595
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.
Clam Anti-virus Clamav 0.92
5
CVSSv2
CVE-2007-6596
ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote malicious users to bypass the scanner via a Base64-UUEncoded file.
Clam Anti-virus Clamav 0.92
5
CVSSv2
CVE-2013-2020
Integer underflow in the cli_scanpe function in pe.c in ClamAV prior to 0.97.8 allows remote malicious users to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read.
Canonical Ubuntu Linux 13.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.10
Suse Linux Enterprise Server 11.0
Clamav Clamav 0.96
Clamav Clamav 0.95.1
Clamav Clamav 0.95
Clamav Clamav 0.93.2
Clamav Clamav 0.93.3
Clamav Clamav 0.90.2
Clamav Clamav 0.90.1 P0
Clamav Clamav 0.93.1
Clamav Clamav 0.94.1
Clamav Clamav 0.96.1
Clamav Clamav 0.96.2
Clamav Clamav 0.97.2
Clamav Clamav 0.95.3
Clamav Clamav 0.90
Clamav Clamav 0.93
Clamav Clamav 0.90.1
4.3
CVSSv2
CVE-2010-1639
The cli_pdf function in libclamav/pdf.c in ClamAV prior to 0.96.1 allows remote malicious users to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length.
Clamav Clamav 0.95.2
Clamav Clamav 0.86.2
Clamav Clamav 0.88.5
Clamav Clamav 0.02
Clamav Clamav 0.92
Clamav Clamav 0.95
Clamav Clamav 0.15
Clamav Clamav 0.90
Clamav Clamav 0.75.1
Clamav Clamav 0.65
Clamav Clamav 0.88.7
Clamav Clamav 0.81
Clamav Clamav 0.86
Clamav Clamav 0.01
Clamav Clamav 0.85
Clamav Clamav 0.84
Clamav Clamav 0.3
Clamav Clamav 0.93.1
Clamav Clamav 0.95.1
Clamav Clamav 0.93
Clamav Clamav 0.70
Clamav Clamav 0.68.1
5
CVSSv2
CVE-2008-6845
The unpack feature in ClamAV 0.93.3 and previous versions allows remote malicious users to cause a denial of service (segmentation fault) via a corrupted LZH file.
Clamav Clamav 0.93.2
Clamav Clamav 0.88.1
Clamav Clamav 0.88.2
Clamav Clamav 0.88.7 P1
Clamav Clamav 0.90.3 P0
Clamav Clamav 0.90.3 P1
Clamav Clamav 0.90.2 P0
Clamav Clamav 0.92.1
Clamav Clamav 0.65
Clamav Clamav 0.93.1
Clamav Clamav 0.71
Clamav Clamav 0.83
Clamav Clamav 0.84
Clamav Clamav 0.05
Clamav Clamav 0.03
Clamav Clamav 0.14
Clamav Clamav 0.12
Clamav Clamav 0.24
Clamav Clamav 0.90.1
Clamav Clamav 0.67-1
Clamav Clamav 0.80
Clamav Clamav 0.87
5
CVSSv2
CVE-2014-9050
Heap-based buffer overflow in the cli_scanpe function in libclamav/pe.c in ClamAV prior to 0.98.5 allows remote malicious users to cause a denial of service (crash) via a crafted y0da Crypter PE file.
Clamav Clamav
Clamav Clamav 0.93
Clamav Clamav 0.92 P0
Clamav Clamav 0.91
Clamav Clamav 0.90
Clamav Clamav 0.88.7
Clamav Clamav 0.88.6
Clamav Clamav 0.87.1
Clamav Clamav 0.87
Clamav Clamav 0.84
Clamav Clamav 0.80
Clamav Clamav 0.74
Clamav Clamav 0.73
Clamav Clamav 0.72
Clamav Clamav 0.67
Clamav Clamav 0.66
Clamav Clamav 0.51
Clamav Clamav 0.3
Clamav Clamav 0.14
Clamav Clamav 0.13
Clamav Clamav 0.93.2
Clamav Clamav 0.93.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »