Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav clamav 0.90 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2007-3025
Unspecified vulnerability in libclamav/phishcheck.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1, when running on Solaris, allows remote malicious users to cause a denial of service (hang) via unknown vectors related to the isURL function and regular expressions.
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90 Rc1.1
4.3
CVSSv2
CVE-2011-3627
The bytecode engine in ClamAV prior to 0.97.3 allows remote malicious users to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/bytecode_api.c.
Clamav Clamav 0.95.2
Clamav Clamav 0.92
Clamav Clamav 0.95
Clamav Clamav 0.90
Clamav Clamav 0.97
Clamav Clamav 0.93.1
Clamav Clamav 0.95.1
Clamav Clamav
Clamav Clamav 0.93
Clamav Clamav 0.96.4
Clamav Clamav 0.9
Clamav Clamav 0.93.3
Clamav Clamav 0.91
Clamav Clamav 0.94
Clamav Clamav 0.91.2
Clamav Clamav 0.96.3
Clamav Clamav 0.90.3
Clamav Clamav 0.96.2
Clamav Clamav 0.94.2
Clamav Clamav 0.96.1
Clamav Clamav 0.96
Clamav Clamav 0.96.5
10
CVSSv2
CVE-2007-3023
unsp.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors.
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90 Rc2
2.1
CVSSv2
CVE-2007-3024
libclamav/others.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files.
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc2
5
CVSSv2
CVE-2007-3122
The parsing engine in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 allows remote malicious users to bypass scanning via a RAR file with a header flag value of 10, which can be processed by WinRAR.
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90
5
CVSSv2
CVE-2007-3123
unrar.c in libclamav in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 allows remote malicious users to cause a denial of service (core dump) via a crafted RAR file with a modified vm_codesize value, which triggers a heap-based buffer overflow.
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
7.5
CVSSv2
CVE-2007-1997
Integer signedness error in the (1) cab_unstore and (2) cab_extract functions in libclamav/cab.c in Clam AntiVirus (ClamAV) prior to 0.90.2 allow remote malicious users to execute arbitrary code via a crafted CHM file that contains a negative integer, which passes a signed compar...
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
4.3
CVSSv2
CVE-2008-1387
ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (CPU consumption) via a crafted ARJ archive, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.91
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
4.3
CVSSv2
CVE-2008-1836
The rfc2231 function in message.c in libclamav in ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (crash) via a crafted message that produces a string that is not null terminated, which triggers a buffer over-read.
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.91
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
5
CVSSv2
CVE-2013-2020
Integer underflow in the cli_scanpe function in pe.c in ClamAV prior to 0.97.8 allows remote malicious users to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read.
Canonical Ubuntu Linux 13.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 11.10
Suse Linux Enterprise Server 11.0
Clamav Clamav 0.96
Clamav Clamav 0.95.1
Clamav Clamav 0.95
Clamav Clamav 0.93.2
Clamav Clamav 0.93.3
Clamav Clamav 0.90.2
Clamav Clamav 0.90.1 P0
Clamav Clamav 0.93.1
Clamav Clamav 0.94.1
Clamav Clamav 0.96.1
Clamav Clamav 0.96.2
Clamav Clamav 0.97.2
Clamav Clamav 0.95.3
Clamav Clamav 0.90
Clamav Clamav 0.93
Clamav Clamav 0.90.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »