Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clam anti-virus vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1800
Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote malicious users to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to index.php.
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.82
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.84 Rc1
1 EDB exploit
NA
CVE-2005-1923
The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote malicious users to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes ...
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.84 Rc1
Clam Anti-virus Clamav 0.85
NA
CVE-2007-3023
unsp.c in ClamAV prior to 0.90.3 and 0.91 prior to 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors.
Clam Anti-virus Clamav 0.90.2
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90.1
Clam Anti-virus Clamav 0.90 Rc2
NA
CVE-2005-2450
Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and previous versions allow remote malicious users to gain privileges via a crafted e-mail message.
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
Clam Anti-virus Clamav 0.85
NA
CVE-2005-2056
The Quantum archive decompressor in Clam AntiVirus (ClamAV) prior to 0.86.1 allows remote malicious users to cause a denial of service (application crash) via a crafted Quantum archive.
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
Clam Anti-virus Clamav 0.85
NA
CVE-2008-1100
Buffer overflow in the cli_scanpe function in libclamav (libclamav/pe.c) for ClamAV 0.92 and 0.92.1 allows remote malicious users to execute arbitrary code via a crafted Upack PE file.
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.92.1
NA
CVE-2006-1989
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.88
NA
CVE-2003-0946
Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 up to and including 0.60p, and other versions prior to 0.65, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via format string specifiers in the email address argum...
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.60p
NA
CVE-2006-2427
freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and previous versions does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of...
Clam Anti-virus Clamxav 1.0.3h
Clam Anti-virus Clamav 0.88
NA
CVE-2007-6029
Unspecified vulnerability in ClamAV 0.91.1 and 0.91.2 allows remote malicious users to execute arbitrary code via a crafted e-mail message. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendor...
Clam Anti-virus Clamav 0.91.1
Clam Anti-virus Clamav 0.91.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »