Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clam anti-virus vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-1100
Buffer overflow in the cli_scanpe function in libclamav (libclamav/pe.c) for ClamAV 0.92 and 0.92.1 allows remote malicious users to execute arbitrary code via a crafted Upack PE file.
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.92.1
7.8
CVSSv2
CVE-2005-3239
The OLE2 unpacker in clamd in Clam AntiVirus (ClamAV) 0.87-1 allows remote malicious users to cause a denial of service (segmentation fault) via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2_walk_property_tree function.
Clam Anti-virus Clamav .
7.5
CVSSv2
CVE-2005-1795
The filecopy function in misc.c in Clam AntiVirus (ClamAV) prior to 0.85, on Mac OS, allows remote malicious users to execute arbitrary code via a virus in a filename that contains shell metacharacters, which are not properly handled when HFS permissions prevent the file from bei...
Clam Anti-virus Clamav
7.5
CVSSv2
CVE-2007-6335
Integer overflow in libclamav in ClamAV prior to 0.92 allows remote malicious users to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.
Clam Anti-virus Clamav
1 EDB exploit
6.8
CVSSv2
CVE-2007-6336
Off-by-one error in ClamAV prior to 0.92 allows remote malicious users to execute arbitrary code via a crafted MS-ZIP compressed CAB file.
Clam Anti-virus Clamav
7.6
CVSSv2
CVE-2007-4560
clamav-milter in ClamAV prior to 0.91.2, when run in black hole mode, allows remote malicious users to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail."
Clam Anti-virus Clamav
3 EDB exploits
2 Github repositories
10
CVSSv2
CVE-2008-0318
Integer overflow in the cli_scanpe function in libclamav in ClamAV prior to 0.92.1, as used in clamd, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted Petite packed PE file, which triggers a heap-based buffer overflow.
Clam Anti-virus Clamav
7.5
CVSSv2
CVE-2008-1833
Heap-based buffer overflow in pe.c in libclamav in ClamAV 0.92.1 allows remote malicious users to execute arbitrary code via a crafted WWPack compressed PE binary.
Clam Anti-virus Clamav 0.92.1
7.5
CVSSv2
CVE-2008-0314
Heap-based buffer overflow in spin.c in libclamav in ClamAV 0.92.1 allows remote malicious users to execute arbitrary code via a crafted PeSpin packed PE binary with a modified length value.
Clam Anti-virus Clamav 0.92.1
5
CVSSv2
CVE-2006-6406
Clam AntiVirus (ClamAV) 0.88.6 allows remote malicious users to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file.
Clam Anti-virus Clamav 0.88.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »