Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clam anti-virus clamav 0.90.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-6335
Integer overflow in libclamav in ClamAV prior to 0.92 allows remote malicious users to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.
Clam Anti-virus Clamav
1 EDB exploit
NA
CVE-2007-4560
clamav-milter in ClamAV prior to 0.91.2, when run in black hole mode, allows remote malicious users to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail."
Clam Anti-virus Clamav
3 EDB exploits
2 Github repositories
NA
CVE-2007-4510
ClamAV prior to 0.91.2, as used in Kolab Server 2.0 up to and including 2.2beta1 and other products, allows remote malicious users to cause a denial of service (application crash) via (1) a crafted RTF file, which triggers a NULL dereference in the cli_scanrtf function in libclam...
Kolab Kolab Server 2.0
Clam Anti-virus Clamav
Kolab Kolab Server 2.1
Kolab Kolab Server 2.2beta1
Kolab Kolab Server 2.0.1
Kolab Kolab Server 2.0.2
Kolab Kolab Server 2.0.3
Kolab Kolab Server 2.0.4
NA
CVE-2007-3725
The RAR VM (unrarvm.c) in Clam Antivirus (ClamAV) prior to 0.91 allows user-assisted remote malicious users to cause a denial of service (crash) via a crafted RAR archive, resulting in a NULL pointer dereference.
Clam Anti-virus Clamav 0.51
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.21
Clam Anti-virus Clamav 0.22
Clam Anti-virus Clamav 0.60p
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.73
Clam Anti-virus Clamav 0.74
Clam Anti-virus Clamav 0.80 Rc4
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.88.3
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.15
Clam Anti-virus Clamav 0.20
Clam Anti-virus Clamav 0.23
Clam Anti-virus Clamav 0.24
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.68
1 EDB exploit
NA
CVE-2007-3024
libclamav/others.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files.
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc2
NA
CVE-2007-3023
unsp.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors.
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90 Rc2
NA
CVE-2007-3122
The parsing engine in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 allows remote malicious users to bypass scanning via a RAR file with a header flag value of 10, which can be processed by WinRAR.
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90
NA
CVE-2007-3123
unrar.c in libclamav in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 allows remote malicious users to cause a denial of service (core dump) via a crafted RAR file with a modified vm_codesize value, which triggers a heap-based buffer overflow.
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
NA
CVE-2007-2650
The OLE2 parser in Clam AntiVirus (ClamAV) allows remote malicious users to cause a denial of service (resource consumption) via an OLE2 file with (1) a large property size or (2) a loop in the FAT file block chain that triggers an infinite loop, as demonstrated via a crafted DOC...
Clamav Clamav
Debian Debian Linux 3.1
Debian Debian Linux 4.0
NA
CVE-2007-2029
File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote malicious users to cause a denial of service via a crafted PDF file.
Clam Anti-virus Clamav 0.84 Rc2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »