Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

clamav clamav 0.90 vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2007-3025
Unspecified vulnerability in libclamav/phishcheck.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1, when running on Solaris, allows remote malicious users to cause a denial of service (hang) via unknown vectors related to the isURL function and regular expressions.
Clam Anti-virus Clamav 0.90.2Clam Anti-virus Clamav 0.90 Rc2Clam Anti-virus Clamav 0.90Clam Anti-virus Clamav 0.90 Rc3Clam Anti-virus Clamav 0.90.1Clam Anti-virus Clamav 0.90 Rc1.1
4.3
CVSSv2
CVE-2011-3627
The bytecode engine in ClamAV prior to 0.97.3 allows remote malicious users to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/bytecode_api.c.
Clamav Clamav 0.95.2Clamav Clamav 0.92Clamav Clamav 0.95Clamav Clamav 0.90Clamav Clamav 0.97Clamav Clamav 0.93.1Clamav Clamav 0.95.1Clamav ClamavClamav Clamav 0.93Clamav Clamav 0.96.4Clamav Clamav 0.9Clamav Clamav 0.93.3Clamav Clamav 0.91Clamav Clamav 0.94Clamav Clamav 0.91.2Clamav Clamav 0.96.3Clamav Clamav 0.90.3Clamav Clamav 0.96.2Clamav Clamav 0.94.2Clamav Clamav 0.96.1Clamav Clamav 0.96Clamav Clamav 0.96.5
10
CVSSv2
CVE-2007-3023
unsp.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors.
Clam Anti-virus Clamav 0.90.2Clam Anti-virus Clamav 0.90 Rc1.1Clam Anti-virus Clamav 0.90Clam Anti-virus Clamav 0.90.1Clam Anti-virus Clamav 0.90 Rc2
2.1
CVSSv2
CVE-2007-3024
libclamav/others.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files.
Clam Anti-virus Clamav 0.90 Rc1.1Clam Anti-virus Clamav 0.90 Rc3Clam Anti-virus Clamav 0.90Clam Anti-virus Clamav 0.90.1Clam Anti-virus Clamav 0.90.2Clam Anti-virus Clamav 0.90 Rc2
5
CVSSv2
CVE-2007-3122
The parsing engine in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 allows remote malicious users to bypass scanning via a RAR file with a header flag value of 10, which can be processed by WinRAR.
Clam Anti-virus Clamav 0.90 Rc1.1Clam Anti-virus Clamav 0.90 Rc2Clam Anti-virus Clamav 0.90.1Clam Anti-virus Clamav 0.90.2Clam Anti-virus Clamav 0.90 Rc3Clam Anti-virus Clamav 0.90
5
CVSSv2
CVE-2007-3123
unrar.c in libclamav in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 allows remote malicious users to cause a denial of service (core dump) via a crafted RAR file with a modified vm_codesize value, which triggers a heap-based buffer overflow.
Clam Anti-virus Clamav 0.90 Rc3Clam Anti-virus Clamav 0.90.2Clam Anti-virus Clamav 0.90 Rc1.1Clam Anti-virus Clamav 0.90 Rc2Clam Anti-virus Clamav 0.90Clam Anti-virus Clamav 0.90.1
7.5
CVSSv2
CVE-2007-1997
Integer signedness error in the (1) cab_unstore and (2) cab_extract functions in libclamav/cab.c in Clam AntiVirus (ClamAV) prior to 0.90.2 allow remote malicious users to execute arbitrary code via a crafted CHM file that contains a negative integer, which passes a signed compar...
Clam Anti-virus Clamav 0.90 Rc2Clam Anti-virus Clamav 0.90 Rc3Clam Anti-virus Clamav 0.90.2Clam Anti-virus Clamav 0.90 Rc1.1Clam Anti-virus Clamav 0.90Clam Anti-virus Clamav 0.90.1
4.3
CVSSv2
CVE-2008-1387
ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (CPU consumption) via a crafted ARJ archive, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Clam Anti-virus Clamav 0.90 Rc1.1Clam Anti-virus Clamav 0.90 Rc2Clam Anti-virus Clamav 0.90 Rc3Clam Anti-virus Clamav 0.90rc1Clam Anti-virus Clamav 0.91Clam Anti-virus Clamav 0.92Clam Anti-virus Clamav 0.90Clam Anti-virus Clamav 0.90.1
4.3
CVSSv2
CVE-2008-1836
The rfc2231 function in message.c in libclamav in ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (crash) via a crafted message that produces a string that is not null terminated, which triggers a buffer over-read.
Clam Anti-virus Clamav 0.90 Rc3Clam Anti-virus Clamav 0.90rc1Clam Anti-virus Clamav 0.91Clam Anti-virus Clamav 0.92Clam Anti-virus Clamav 0.90 Rc1.1Clam Anti-virus Clamav 0.90 Rc2Clam Anti-virus Clamav 0.90Clam Anti-virus Clamav 0.90.1
5
CVSSv2
CVE-2013-2020
Integer underflow in the cli_scanpe function in pe.c in ClamAV prior to 0.97.8 allows remote malicious users to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read.
Canonical Ubuntu Linux 13.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.10Suse Linux Enterprise Server 11.0Clamav Clamav 0.96Clamav Clamav 0.95.1Clamav Clamav 0.95Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.90.2Clamav Clamav 0.90.1 P0Clamav Clamav 0.93.1Clamav Clamav 0.94.1Clamav Clamav 0.96.1Clamav Clamav 0.96.2Clamav Clamav 0.97.2Clamav Clamav 0.95.3Clamav Clamav 0.90Clamav Clamav 0.93Clamav Clamav 0.90.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook