Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

clamav clamav 0.91.2 vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv2
CVE-2007-6029
Unspecified vulnerability in ClamAV 0.91.1 and 0.91.2 allows remote malicious users to execute arbitrary code via a crafted e-mail message. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendor...
Clam Anti-virus Clamav 0.91.1Clam Anti-virus Clamav 0.91.2
10
CVSSv2
CVE-2007-6337
Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private.h in ClamAV prior to 0.92 has unknown impact and remote attack vectors.
Clam Anti-virus Clamav 0.91.2
4.3
CVSSv2
CVE-2011-3627
The bytecode engine in ClamAV prior to 0.97.3 allows remote malicious users to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/bytecode_api.c.
Clamav Clamav 0.95.2Clamav Clamav 0.92Clamav Clamav 0.95Clamav Clamav 0.90Clamav Clamav 0.97Clamav Clamav 0.93.1Clamav Clamav 0.95.1Clamav ClamavClamav Clamav 0.93Clamav Clamav 0.96.4Clamav Clamav 0.9Clamav Clamav 0.93.3Clamav Clamav 0.91Clamav Clamav 0.94Clamav Clamav 0.91.2Clamav Clamav 0.96.3Clamav Clamav 0.90.3Clamav Clamav 0.96.2Clamav Clamav 0.94.2Clamav Clamav 0.96.1Clamav Clamav 0.96Clamav Clamav 0.96.5
7.5
CVSSv2
CVE-2007-6745
clamav 0.91.2 suffers from a floating point exception when using ScanOLE2.
Clamav Clamav 0.91.2Debian Debian Linux 8.0Debian Debian Linux 9.0Debian Debian Linux 10.0
5
CVSSv2
CVE-2013-2020
Integer underflow in the cli_scanpe function in pe.c in ClamAV prior to 0.97.8 allows remote malicious users to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read.
Canonical Ubuntu Linux 13.04Canonical Ubuntu Linux 12.10Canonical Ubuntu Linux 12.04Canonical Ubuntu Linux 10.04Canonical Ubuntu Linux 11.10Suse Linux Enterprise Server 11.0Clamav Clamav 0.96Clamav Clamav 0.95.1Clamav Clamav 0.95Clamav Clamav 0.93.2Clamav Clamav 0.93.3Clamav Clamav 0.90.2Clamav Clamav 0.90.1 P0Clamav Clamav 0.93.1Clamav Clamav 0.94.1Clamav Clamav 0.96.1Clamav Clamav 0.96.2Clamav Clamav 0.97.2Clamav Clamav 0.95.3Clamav Clamav 0.90Clamav Clamav 0.93Clamav Clamav 0.90.1
5
CVSSv2
CVE-2008-3215
libclamav/petite.c in ClamAV prior to 0.93.3 allows remote malicious users to cause a denial of service via a malformed Petite file that triggers an out-of-bounds memory access. NOTE: this issue exists because of an incomplete fix for CVE-2008-2713.
Clam Anti-virus Clamav 0.88.2Clam Anti-virus Clamav 0.88.4Clam Anti-virus Clamav 0.90.1Clam Anti-virus Clamav 0.92Clam Anti-virus Clamav 0.93Clam Anti-virus Clamav 0.88.7Clam Anti-virus Clamav 0.90Clam Anti-virus Clamav 0.91.2Clam Anti-virus Clamav 0.92.1Clam Anti-virus Clamav 0.90.3Clam Anti-virus Clamav 0.88.5Clam Anti-virus Clamav 0.88.6Clam Anti-virus Clamav 0.90.2
4.3
CVSSv2
CVE-2010-1639
The cli_pdf function in libclamav/pdf.c in ClamAV prior to 0.96.1 allows remote malicious users to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length.
Clamav Clamav 0.95.2Clamav Clamav 0.86.2Clamav Clamav 0.88.5Clamav Clamav 0.02Clamav Clamav 0.92Clamav Clamav 0.95Clamav Clamav 0.15Clamav Clamav 0.90Clamav Clamav 0.75.1Clamav Clamav 0.65Clamav Clamav 0.88.7Clamav Clamav 0.81Clamav Clamav 0.86Clamav Clamav 0.01Clamav Clamav 0.85Clamav Clamav 0.84Clamav Clamav 0.3Clamav Clamav 0.93.1Clamav Clamav 0.95.1Clamav Clamav 0.93Clamav Clamav 0.70Clamav Clamav 0.68.1
5
CVSSv2
CVE-2008-6845
The unpack feature in ClamAV 0.93.3 and previous versions allows remote malicious users to cause a denial of service (segmentation fault) via a corrupted LZH file.
Clamav Clamav 0.93.2Clamav Clamav 0.88.1Clamav Clamav 0.88.2Clamav Clamav 0.88.7 P1Clamav Clamav 0.90.3 P0Clamav Clamav 0.90.3 P1Clamav Clamav 0.90.2 P0Clamav Clamav 0.92.1Clamav Clamav 0.65Clamav Clamav 0.93.1Clamav Clamav 0.71Clamav Clamav 0.83Clamav Clamav 0.84Clamav Clamav 0.05Clamav Clamav 0.03Clamav Clamav 0.14Clamav Clamav 0.12Clamav Clamav 0.24Clamav Clamav 0.90.1Clamav Clamav 0.67-1Clamav Clamav 0.80Clamav Clamav 0.87
10
CVSSv2
CVE-2008-0728
The unmew11 function in libclamav/mew.c in libclamav in ClamAV prior to 0.92.1 has unknown impact and attack vectors that trigger "heap corruption."
Clamav Clamav 0.66Clamav Clamav 0.67-1Clamav Clamav 0.80Clamav Clamav 0.90Clamav Clamav 0.88Clamav Clamav 0.87.1Clamav Clamav 0.88.7 P0Clamav Clamav 0.88.7Clamav Clamav 0.90.3 P1Clamav Clamav 0.90.2 P0Clamav Clamav 0.90.3Clamav Clamav 0.68Clamav Clamav 0.67Clamav Clamav 0.75.1Clamav Clamav 0.75Clamav Clamav 0.85.1Clamav Clamav 0.86Clamav Clamav 0.01Clamav Clamav 0.21Clamav Clamav 0.54Clamav Clamav 0.60Clamav Clamav 0.81
5
CVSSv2
CVE-2014-9050
Heap-based buffer overflow in the cli_scanpe function in libclamav/pe.c in ClamAV prior to 0.98.5 allows remote malicious users to cause a denial of service (crash) via a crafted y0da Crypter PE file.
Clamav ClamavClamav Clamav 0.93Clamav Clamav 0.92 P0Clamav Clamav 0.91Clamav Clamav 0.90Clamav Clamav 0.88.7Clamav Clamav 0.88.6Clamav Clamav 0.87.1Clamav Clamav 0.87Clamav Clamav 0.84Clamav Clamav 0.80Clamav Clamav 0.74Clamav Clamav 0.73Clamav Clamav 0.72Clamav Clamav 0.67Clamav Clamav 0.66Clamav Clamav 0.51Clamav Clamav 0.3Clamav Clamav 0.14Clamav Clamav 0.13Clamav Clamav 0.93.2Clamav Clamav 0.93.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400CVE-2023-7252CVE-2024-21111denial of serviceCVE-2024-29661CVE-2024-22856remote attackersencryptionCVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook