Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

clamav clamav 0.96 vulnerabilities and exploits

(subscribe to this query)

4.3
CVSSv2
CVE-2010-1640
Off-by-one error in the parseicon function in libclamav/pe_icons.c in ClamAV 0.96 allows remote attackers to cause a denial of service (crash) via a crafted PE icon that triggers an out-of-bounds read, related to improper rounding during scaling....
Clamav Clamav 0.96
4.3
CVSSv2
CVE-2011-3627
The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/bytecode_api.c....
Clamav Clamav 0.9Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.2Clamav Clamav 0.90.3Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav Clamav 0.96Clamav Clamav 0.96.1Clamav Clamav 0.96.2Clamav Clamav 0.96.3Clamav Clamav 0.96.4Clamav Clamav 0.96.5Clamav Clamav 0.97Clamav Clamav 0.97.1Clamav Clamav
5
CVSSv2
CVE-2010-1311
The qtm_decompress function in libclamav/mspack.c in ClamAV before 0.96 allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted CAB archive that uses the Quantum (aka .Q) compression format. NOTE: some of these details are...
Clamav Clamav 0.01Clamav Clamav 0.02Clamav Clamav 0.03Clamav Clamav 0.3Clamav Clamav 0.05Clamav Clamav 0.9Clamav Clamav 0.10Clamav Clamav 0.12Clamav Clamav 0.13Clamav Clamav 0.14Clamav Clamav 0.15Clamav Clamav 0.20Clamav Clamav 0.21Clamav Clamav 0.22Clamav Clamav 0.23Clamav Clamav 0.24Clamav Clamav 0.51Clamav Clamav 0.52Clamav Clamav 0.53Clamav Clamav 0.54Clamav Clamav 0.60Clamav Clamav 0.60pClamav Clamav 0.65Clamav Clamav 0.66Clamav Clamav 0.67Clamav Clamav 0.67-1Clamav Clamav 0.68Clamav Clamav 0.68.1Clamav Clamav 0.70Clamav Clamav 0.71Clamav Clamav 0.72Clamav Clamav 0.73Clamav Clamav 0.74Clamav Clamav 0.75Clamav Clamav 0.75.1Clamav Clamav 0.80Clamav Clamav 0.81Clamav Clamav 0.82Clamav Clamav 0.83Clamav Clamav 0.84Clamav Clamav 0.85Clamav Clamav 0.85.1Clamav Clamav 0.86Clamav Clamav 0.86.1Clamav Clamav 0.86.2Clamav Clamav 0.87Clamav Clamav 0.87.1Clamav Clamav 0.88Clamav Clamav 0.88.1Clamav Clamav 0.88.2Clamav Clamav 0.88.3Clamav Clamav 0.88.4Clamav Clamav 0.88.5Clamav Clamav 0.88.6Clamav Clamav 0.88.7Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.2Clamav Clamav 0.90.3Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav Clamav 0.96Clamav ClamavClamavs Clamav 0.04Clamavs Clamav 0.06
6.8
CVSSv2
CVE-2011-1003
Double free vulnerability in the vba_read_project_strings function in vba_extract.c in libclamav in ClamAV before 0.97 might allow remote attackers to execute arbitrary code via crafted Visual Basic for Applications (VBA) data in a Microsoft Office document. NOTE: some of these...
Clamav Clamav 0.01Clamav Clamav 0.02Clamav Clamav 0.03Clamav Clamav 0.3Clamav Clamav 0.05Clamav Clamav 0.8Clamav Clamav 0.9Clamav Clamav 0.10Clamav Clamav 0.12Clamav Clamav 0.13Clamav Clamav 0.14Clamav Clamav 0.15Clamav Clamav 0.20Clamav Clamav 0.21Clamav Clamav 0.22Clamav Clamav 0.23Clamav Clamav 0.24Clamav Clamav 0.51Clamav Clamav 0.52Clamav Clamav 0.53Clamav Clamav 0.54Clamav Clamav 0.60Clamav Clamav 0.60pClamav Clamav 0.65Clamav Clamav 0.66Clamav Clamav 0.67Clamav Clamav 0.67-1Clamav Clamav 0.68Clamav Clamav 0.68.1Clamav Clamav 0.70Clamav Clamav 0.71Clamav Clamav 0.72Clamav Clamav 0.73Clamav Clamav 0.74Clamav Clamav 0.75Clamav Clamav 0.75.1Clamav Clamav 0.80Clamav Clamav 0.80 RcClamav Clamav 0.81Clamav Clamav 0.82Clamav Clamav 0.83Clamav Clamav 0.84Clamav Clamav 0.85Clamav Clamav 0.85.1Clamav Clamav 0.86Clamav Clamav 0.86.1Clamav Clamav 0.86.2Clamav Clamav 0.87Clamav Clamav 0.87.1Clamav Clamav 0.88Clamav Clamav 0.88.1Clamav Clamav 0.88.2Clamav Clamav 0.88.3Clamav Clamav 0.88.4Clamav Clamav 0.88.5Clamav Clamav 0.88.6Clamav Clamav 0.88.7Clamav Clamav 0.88.7 P0Clamav Clamav 0.88.7 P1Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.1 P0Clamav Clamav 0.90.2Clamav Clamav 0.90.2 P0Clamav Clamav 0.90.3Clamav Clamav 0.90.3 P0Clamav Clamav 0.90.3 P1Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.91.2 P0Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.92 P0Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav Clamav 0.96Clamav Clamav 0.96.1Clamav Clamav 0.96.2Clamav Clamav 0.96.3Clamav Clamav 0.96.4Clamav Clamav
9.3
CVSSv2
CVE-2010-3434
Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. NOTE: some of these details are obtained from...
Clamav Clamav 0.01Clamav Clamav 0.02Clamav Clamav 0.03Clamav Clamav 0.3Clamav Clamav 0.05Clamav Clamav 0.9Clamav Clamav 0.10Clamav Clamav 0.12Clamav Clamav 0.13Clamav Clamav 0.14Clamav Clamav 0.15Clamav Clamav 0.20Clamav Clamav 0.21Clamav Clamav 0.22Clamav Clamav 0.23Clamav Clamav 0.24Clamav Clamav 0.51Clamav Clamav 0.52Clamav Clamav 0.53Clamav Clamav 0.54Clamav Clamav 0.60Clamav Clamav 0.60pClamav Clamav 0.65Clamav Clamav 0.66Clamav Clamav 0.67Clamav Clamav 0.67-1Clamav Clamav 0.68Clamav Clamav 0.68.1Clamav Clamav 0.70Clamav Clamav 0.71Clamav Clamav 0.72Clamav Clamav 0.73Clamav Clamav 0.74Clamav Clamav 0.75Clamav Clamav 0.75.1Clamav Clamav 0.80Clamav Clamav 0.81Clamav Clamav 0.82Clamav Clamav 0.83Clamav Clamav 0.84Clamav Clamav 0.85Clamav Clamav 0.85.1Clamav Clamav 0.86Clamav Clamav 0.86.1Clamav Clamav 0.86.2Clamav Clamav 0.87Clamav Clamav 0.87.1Clamav Clamav 0.88Clamav Clamav 0.88.1Clamav Clamav 0.88.2Clamav Clamav 0.88.3Clamav Clamav 0.88.4Clamav Clamav 0.88.5Clamav Clamav 0.88.6Clamav Clamav 0.88.7Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.2Clamav Clamav 0.90.3Clamav Clamav 0.90.3 P0Clamav Clamav 0.90.3 P1Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.91.2 P0Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.92 P0Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav Clamav 0.96Clamav Clamav 0.96.1Clamav Clamav
5
CVSSv2
CVE-2013-2020
Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read....
Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.10Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 13.04Suse Linux Enterprise Server 11.0Clamav Clamav 0.9Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.1 P0Clamav Clamav 0.90.2Clamav Clamav 0.90.2 P0Clamav Clamav 0.90.3Clamav Clamav 0.90.3 P0Clamav Clamav 0.90.3 P1Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.91.2 P0Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.92 P0Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav Clamav 0.96Clamav Clamav 0.96.1Clamav Clamav 0.96.2Clamav Clamav 0.96.3Clamav Clamav 0.96.4Clamav Clamav 0.96.5Clamav Clamav 0.97Clamav Clamav 0.97.1Clamav Clamav 0.97.2Clamav Clamav 0.97.3Clamav Clamav 0.97.4Clamav Clamav 0.97.5Clamav Clamav
5
CVSSv2
CVE-2010-4260
Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV before 0.96.5 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, aka (1) "bb #2358" and (2) "bb #2396."...
Clamav Clamav 0.01Clamav Clamav 0.02Clamav Clamav 0.03Clamav Clamav 0.3Clamav Clamav 0.05Clamav Clamav 0.8Clamav Clamav 0.9Clamav Clamav 0.10Clamav Clamav 0.12Clamav Clamav 0.13Clamav Clamav 0.14Clamav Clamav 0.15Clamav Clamav 0.20Clamav Clamav 0.21Clamav Clamav 0.22Clamav Clamav 0.23Clamav Clamav 0.24Clamav Clamav 0.51Clamav Clamav 0.52Clamav Clamav 0.53Clamav Clamav 0.54Clamav Clamav 0.60Clamav Clamav 0.60pClamav Clamav 0.65Clamav Clamav 0.66Clamav Clamav 0.67Clamav Clamav 0.67-1Clamav Clamav 0.68Clamav Clamav 0.68.1Clamav Clamav 0.70Clamav Clamav 0.71Clamav Clamav 0.72Clamav Clamav 0.73Clamav Clamav 0.74Clamav Clamav 0.75Clamav Clamav 0.75.1Clamav Clamav 0.80Clamav Clamav 0.80 RcClamav Clamav 0.81Clamav Clamav 0.82Clamav Clamav 0.83Clamav Clamav 0.84Clamav Clamav 0.85Clamav Clamav 0.85.1Clamav Clamav 0.86Clamav Clamav 0.86.1Clamav Clamav 0.86.2Clamav Clamav 0.87Clamav Clamav 0.87.1Clamav Clamav 0.88Clamav Clamav 0.88.1Clamav Clamav 0.88.2Clamav Clamav 0.88.3Clamav Clamav 0.88.4Clamav Clamav 0.88.5Clamav Clamav 0.88.6Clamav Clamav 0.88.7Clamav Clamav 0.88.7 P0Clamav Clamav 0.88.7 P1Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.1 P0Clamav Clamav 0.90.2Clamav Clamav 0.90.2 P0Clamav Clamav 0.90.3Clamav Clamav 0.90.3 P0Clamav Clamav 0.90.3 P1Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.91.2 P0Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.92 P0Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav Clamav 0.96Clamav Clamav 0.96.1Clamav Clamav 0.96.2Clamav Clamav 0.96.3Clamav Clamav
4.3
CVSSv2
CVE-2010-1639
The cli_pdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows remote attackers to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length....
Clamav Clamav 0.01Clamav Clamav 0.02Clamav Clamav 0.03Clamav Clamav 0.3Clamav Clamav 0.05Clamav Clamav 0.9Clamav Clamav 0.10Clamav Clamav 0.12Clamav Clamav 0.13Clamav Clamav 0.14Clamav Clamav 0.15Clamav Clamav 0.20Clamav Clamav 0.21Clamav Clamav 0.22Clamav Clamav 0.23Clamav Clamav 0.24Clamav Clamav 0.51Clamav Clamav 0.52Clamav Clamav 0.53Clamav Clamav 0.54Clamav Clamav 0.60Clamav Clamav 0.60pClamav Clamav 0.65Clamav Clamav 0.66Clamav Clamav 0.67Clamav Clamav 0.67-1Clamav Clamav 0.68Clamav Clamav 0.68.1Clamav Clamav 0.70Clamav Clamav 0.71Clamav Clamav 0.72Clamav Clamav 0.73Clamav Clamav 0.74Clamav Clamav 0.75Clamav Clamav 0.75.1Clamav Clamav 0.80Clamav Clamav 0.81Clamav Clamav 0.82Clamav Clamav 0.83Clamav Clamav 0.84Clamav Clamav 0.85Clamav Clamav 0.85.1Clamav Clamav 0.86Clamav Clamav 0.86.1Clamav Clamav 0.86.2Clamav Clamav 0.87Clamav Clamav 0.87.1Clamav Clamav 0.88Clamav Clamav 0.88.1Clamav Clamav 0.88.2Clamav Clamav 0.88.3Clamav Clamav 0.88.4Clamav Clamav 0.88.5Clamav Clamav 0.88.6Clamav Clamav 0.88.7Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.2Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav ClamavClamav Clamav 0.96
5
CVSSv2
CVE-2011-2721
Off-by-one error in the cli_hm_scan function in matcher-hash.c in libclamav in ClamAV before 0.97.2 allows remote attackers to cause a denial of service (daemon crash) via an e-mail message that is not properly handled during certain hash calculations....
Clamav Clamav 0.01Clamav Clamav 0.02Clamav Clamav 0.03Clamav Clamav 0.3Clamav Clamav 0.05Clamav Clamav 0.8Clamav Clamav 0.9Clamav Clamav 0.10Clamav Clamav 0.12Clamav Clamav 0.13Clamav Clamav 0.14Clamav Clamav 0.15Clamav Clamav 0.20Clamav Clamav 0.21Clamav Clamav 0.22Clamav Clamav 0.23Clamav Clamav 0.24Clamav Clamav 0.51Clamav Clamav 0.52Clamav Clamav 0.53Clamav Clamav 0.54Clamav Clamav 0.60Clamav Clamav 0.60pClamav Clamav 0.65Clamav Clamav 0.66Clamav Clamav 0.67Clamav Clamav 0.67-1Clamav Clamav 0.68Clamav Clamav 0.68.1Clamav Clamav 0.70Clamav Clamav 0.71Clamav Clamav 0.72Clamav Clamav 0.73Clamav Clamav 0.74Clamav Clamav 0.75Clamav Clamav 0.75.1Clamav Clamav 0.80Clamav Clamav 0.80 RcClamav Clamav 0.81Clamav Clamav 0.82Clamav Clamav 0.83Clamav Clamav 0.84Clamav Clamav 0.85Clamav Clamav 0.85.1Clamav Clamav 0.86Clamav Clamav 0.86.1Clamav Clamav 0.86.2Clamav Clamav 0.87Clamav Clamav 0.87.1Clamav Clamav 0.88Clamav Clamav 0.88.1Clamav Clamav 0.88.2Clamav Clamav 0.88.3Clamav Clamav 0.88.4Clamav Clamav 0.88.5Clamav Clamav 0.88.6Clamav Clamav 0.88.7Clamav Clamav 0.88.7 P0Clamav Clamav 0.88.7 P1Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.1 P0Clamav Clamav 0.90.2Clamav Clamav 0.90.2 P0Clamav Clamav 0.90.3Clamav Clamav 0.90.3 P0Clamav Clamav 0.90.3 P1Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.91.2 P0Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.92 P0Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav Clamav 0.96Clamav Clamav 0.96.1Clamav Clamav 0.96.2Clamav Clamav 0.96.3Clamav Clamav 0.96.4Clamav Clamav 0.96.5Clamav Clamav 0.97Clamav Clamav
10
CVSSv2
CVE-2010-0098
ClamAV before 0.96 does not properly handle the (1) CAB and (2) 7z file formats, which allows remote attackers to bypass virus detection via a crafted archive that is compatible with standard archive utilities....
Clamav Clamav 0.01Clamav Clamav 0.02Clamav Clamav 0.03Clamav Clamav 0.3Clamav Clamav 0.05Clamav Clamav 0.9Clamav Clamav 0.10Clamav Clamav 0.12Clamav Clamav 0.13Clamav Clamav 0.14Clamav Clamav 0.15Clamav Clamav 0.20Clamav Clamav 0.21Clamav Clamav 0.22Clamav Clamav 0.23Clamav Clamav 0.24Clamav Clamav 0.51Clamav Clamav 0.52Clamav Clamav 0.53Clamav Clamav 0.54Clamav Clamav 0.60Clamav Clamav 0.60pClamav Clamav 0.65Clamav Clamav 0.66Clamav Clamav 0.67Clamav Clamav 0.67-1Clamav Clamav 0.68Clamav Clamav 0.68.1Clamav Clamav 0.70Clamav Clamav 0.71Clamav Clamav 0.72Clamav Clamav 0.73Clamav Clamav 0.74Clamav Clamav 0.75Clamav Clamav 0.75.1Clamav Clamav 0.80Clamav Clamav 0.81Clamav Clamav 0.82Clamav Clamav 0.83Clamav Clamav 0.84Clamav Clamav 0.85Clamav Clamav 0.85.1Clamav Clamav 0.86Clamav Clamav 0.86.1Clamav Clamav 0.86.2Clamav Clamav 0.87Clamav Clamav 0.87.1Clamav Clamav 0.88Clamav Clamav 0.88.1Clamav Clamav 0.88.2Clamav Clamav 0.88.3Clamav Clamav 0.88.4Clamav Clamav 0.88.5Clamav Clamav 0.88.6Clamav Clamav 0.88.7Clamav Clamav 0.90Clamav Clamav 0.90.1Clamav Clamav 0.90.2Clamav Clamav 0.90.3Clamav Clamav 0.91Clamav Clamav 0.91.1Clamav Clamav 0.91.2Clamav Clamav 0.92Clamav Clamav 0.92.1Clamav Clamav 0.93Clamav Clamav 0.93.1Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.94Clamav Clamav 0.94.1Clamav Clamav 0.94.2Clamav Clamav 0.95Clamav Clamav 0.95.1Clamav Clamav 0.95.2Clamav Clamav 0.95.3Clamav Clamav 0.96Clamav ClamavClamavs Clamav 0.04Clamavs Clamav 0.06
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2021-21973mass assignmentCVE-2021-1396CVE-2018-19518CVE-2020-28599deserializationCVE-2021-1230CVE-2021-26681