Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clam anti-virus vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-1800
Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote malicious users to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to index.php.
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.82
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.84 Rc1
1 EDB exploit
2.6
CVSSv2
CVE-2005-1923
The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote malicious users to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes ...
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.84 Rc1
Clam Anti-virus Clamav 0.85
10
CVSSv2
CVE-2007-3023
unsp.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors.
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90 Rc2
7.5
CVSSv2
CVE-2005-2450
Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and previous versions allow remote malicious users to gain privileges via a crafted e-mail message.
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
Clam Anti-virus Clamav 0.85
2.6
CVSSv2
CVE-2005-2056
The Quantum archive decompressor in Clam AntiVirus (ClamAV) prior to 0.86.1 allows remote malicious users to cause a denial of service (application crash) via a crafted Quantum archive.
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
Clam Anti-virus Clamav 0.85
2.6
CVSSv2
CVE-2004-1909
Claim Anti-Virus (ClamAV) 0.68 and previous versions allows remote malicious users to cause a denial of service (crash) via certain RAR archives, such as those generated by the Beagle/Bagle worm.
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.65
7.5
CVSSv2
CVE-2007-6029
Unspecified vulnerability in ClamAV 0.91.1 and 0.91.2 allows remote malicious users to execute arbitrary code via a crafted e-mail message. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendor...
Clam Anti-virus Clamav 0.91.1
Clam Anti-virus Clamav 0.91.2
7.5
CVSSv2
CVE-2003-0946
Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 up to and including 0.60p, and other versions prior to 0.65, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via format string specifiers in the email address argum...
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.60p
5.1
CVSSv2
CVE-2006-1989
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.88
7.2
CVSSv2
CVE-2006-2427
freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and previous versions does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of...
Clam Anti-virus Clamxav 1.0.3h
Clam Anti-virus Clamav 0.88
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »