Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav clamav 0.91 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2007-3122
The parsing engine in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 allows remote malicious users to bypass scanning via a RAR file with a header flag value of 10, which can be processed by WinRAR.
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90
5
CVSSv2
CVE-2007-3123
unrar.c in libclamav in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 allows remote malicious users to cause a denial of service (core dump) via a crafted RAR file with a modified vm_codesize value, which triggers a heap-based buffer overflow.
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
4.3
CVSSv2
CVE-2011-3627
The bytecode engine in ClamAV prior to 0.97.3 allows remote malicious users to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/bytecode_api.c.
Clamav Clamav 0.95.2
Clamav Clamav 0.92
Clamav Clamav 0.95
Clamav Clamav 0.90
Clamav Clamav 0.97
Clamav Clamav 0.93.1
Clamav Clamav 0.95.1
Clamav Clamav
Clamav Clamav 0.93
Clamav Clamav 0.96.4
Clamav Clamav 0.9
Clamav Clamav 0.93.3
Clamav Clamav 0.91
Clamav Clamav 0.94
Clamav Clamav 0.91.2
Clamav Clamav 0.96.3
Clamav Clamav 0.90.3
Clamav Clamav 0.96.2
Clamav Clamav 0.94.2
Clamav Clamav 0.96.1
Clamav Clamav 0.96
Clamav Clamav 0.96.5
4.3
CVSSv2
CVE-2010-1639
The cli_pdf function in libclamav/pdf.c in ClamAV prior to 0.96.1 allows remote malicious users to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length.
Clamav Clamav 0.95.2
Clamav Clamav 0.86.2
Clamav Clamav 0.88.5
Clamav Clamav 0.02
Clamav Clamav 0.92
Clamav Clamav 0.95
Clamav Clamav 0.15
Clamav Clamav 0.90
Clamav Clamav 0.75.1
Clamav Clamav 0.65
Clamav Clamav 0.88.7
Clamav Clamav 0.81
Clamav Clamav 0.86
Clamav Clamav 0.01
Clamav Clamav 0.85
Clamav Clamav 0.84
Clamav Clamav 0.3
Clamav Clamav 0.93.1
Clamav Clamav 0.95.1
Clamav Clamav 0.93
Clamav Clamav 0.70
Clamav Clamav 0.68.1
4.3
CVSSv2
CVE-2008-5314
Stack consumption vulnerability in libclamav/special.c in ClamAV prior to 0.94.2 allows remote malicious users to cause a denial of service (daemon crash) via a crafted JPEG file, related to the cli_check_jpeg_exploit, jpeg_check_photoshop, and jpeg_check_photoshop_8bim functions...
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.91.2
Clam Anti-virus Clamav 0.88.6
Clam Anti-virus Clamav 0.88.5
Clam Anti-virus Clamav 0.87
Clam Anti-virus Clamav 0.86.2
Clam Anti-virus Clamav 0.84
Clam Anti-virus Clamav 0.93.3
Clam Anti-virus Clamav 0.93.1
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.88.2
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.86
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.80
Clam Anti-virus Clamav 0.74
Clam Anti-virus Clamav 0.73
Clam Anti-virus Clamav 0.93
Clam Anti-virus Clamav 0.92.1
Clam Anti-virus Clamav 0.90
1 EDB exploit
4.3
CVSSv2
CVE-2008-1387
ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (CPU consumption) via a crafted ARJ archive, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.91
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
4.3
CVSSv2
CVE-2008-1836
The rfc2231 function in message.c in libclamav in ClamAV prior to 0.93 allows remote malicious users to cause a denial of service (crash) via a crafted message that produces a string that is not null terminated, which triggers a buffer over-read.
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.91
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
4.3
CVSSv2
CVE-2007-3725
The RAR VM (unrarvm.c) in Clam Antivirus (ClamAV) prior to 0.91 allows user-assisted remote malicious users to cause a denial of service (crash) via a crafted RAR archive, resulting in a NULL pointer dereference.
Clam Anti-virus Clamav 0.51
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.21
Clam Anti-virus Clamav 0.22
Clam Anti-virus Clamav 0.60p
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.73
Clam Anti-virus Clamav 0.74
Clam Anti-virus Clamav 0.80 Rc4
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.88.3
Clam Anti-virus Clamav 0.90 Rc2
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.15
Clam Anti-virus Clamav 0.20
Clam Anti-virus Clamav 0.23
Clam Anti-virus Clamav 0.24
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.68
1 EDB exploit
2.1
CVSSv2
CVE-2007-3024
libclamav/others.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files.
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90 Rc3
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3