Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2008-5313
mailscanner 4.68.8 and other versions prior to 4.74.16-1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files used by the (1) f-prot-autoupdate, (2) clamav-autoupdate, (3) avast-autoupdate, and (4) f-prot-6-autoupdate scripts in /et...
Mailscanner Mailscanner 4.73.4-2
Mailscanner Mailscanner 4.72.5-1
Mailscanner Mailscanner 4.71.10-1
Mailscanner Mailscanner 4.69.9-3
Mailscanner Mailscanner 4.68.8
Mailscanner Mailscanner 4.70.7-1
Mailscanner Mailscanner 4.68.8-1
6.8
CVSSv2
CVE-2019-1785
A vulnerability in the RAR file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due to a lack of proper...
Clamav Clamav 0.101.0
Clamav Clamav 0.101.1
6.8
CVSSv2
CVE-2018-14681
An issue exists in kwajd_read_headers in mspack/kwajd.c in libmspack prior to 0.7alpha. Bad KWAJ file header extensions could cause a one or two byte overwrite.
Cabextract Libmspack 0.6
Cabextract Libmspack 0.4
Cabextract Libmspack 0.0.20060920
Cabextract Project Cabextract
Cabextract Libmspack 0.5
Cabextract Libmspack 0.3
Debian Debian Linux 9.0
Canonical Ubuntu Linux 16.04
Debian Debian Linux 8.0
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
Redhat Enterprise Linux Workstation 7.0
Redhat Ansible Tower 3.3
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server 7.0
6.8
CVSSv2
CVE-2018-14682
An issue exists in mspack/chmd.c in libmspack prior to 0.7alpha. There is an off-by-one error in the TOLOWER() macro for CHM decompression.
Cabextract Libmspack 0.6
Cabextract Libmspack 0.5
Cabextract Libmspack 0.4
Cabextract Libmspack 0.0.20060920
Cabextract Libmspack 0.3
Cabextract Project Cabextract
Debian Debian Linux 8.0
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Ansible Tower 3.3
6.8
CVSSv2
CVE-2017-6419
mspack/lzxd.c in libmspack 0.5alpha, as used in ClamAV 0.99.2, allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted CHM file.
Libmspack Project Libmspack 0.5
6.8
CVSSv2
CVE-2011-1003
Double free vulnerability in the vba_read_project_strings function in vba_extract.c in libclamav in ClamAV prior to 0.97 might allow remote malicious users to execute arbitrary code via crafted Visual Basic for Applications (VBA) data in a Microsoft Office document. NOTE: some of...
Clamav Clamav
Clamav Clamav 0.95.2
Clamav Clamav 0.86.2
Clamav Clamav 0.88.5
Clamav Clamav 0.02
Clamav Clamav 0.92
Clamav Clamav 0.95
Clamav Clamav 0.8
Clamav Clamav 0.15
Clamav Clamav 0.90
Clamav Clamav 0.75.1
Clamav Clamav 0.65
Clamav Clamav 0.88.7
Clamav Clamav 0.81
Clamav Clamav 0.86
Clamav Clamav 0.01
Clamav Clamav 0.92 P0
Clamav Clamav 0.85
Clamav Clamav 0.84
Clamav Clamav 0.3
Clamav Clamav 0.91.2 P0
Clamav Clamav 0.93.1
6.8
CVSSv2
CVE-2009-1601
The Ubuntu clamav-milter.init script in clamav-milter prior to 0.95.1+dfsg-1ubuntu1.2 in Ubuntu 9.04 sets the ownership of the current working directory to the clamav account, which might allow local users to bypass intended access restrictions via read or write operations involv...
Ubuntu Linux 9.04
6.8
CVSSv2
CVE-2007-6336
Off-by-one error in ClamAV prior to 0.92 allows remote malicious users to execute arbitrary code via a crafted MS-ZIP compressed CAB file.
Clam Anti-virus Clamav
6.4
CVSSv2
CVE-2010-0058
freshclam in ClamAV in Apple Mac OS X 10.5.8 with Security Update 2009-005 has an incorrect launchd.plist ProgramArguments key and consequently does not run, which might allow remote malicious users to introduce viruses into the system.
Apple Mac Os X Server 10.5.8
Apple Mac Os X 10.5.8
6.4
CVSSv2
CVE-2007-0898
Directory traversal vulnerability in clamd in Clam AntiVirus ClamAV prior to 0.90 allows remote malicious users to overwrite arbitrary files via a .. (dot dot) in the id MIME header parameter in a multi-part message.
Clam Anti-virus Clamav 0.21
Clam Anti-virus Clamav 0.22
Clam Anti-virus Clamav 0.23
Clam Anti-virus Clamav 0.60p
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.73
Clam Anti-virus Clamav 0.74
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.68.1
Clam Anti-virus Clamav 0.70
Clam Anti-virus Clamav 0.80
Clam Anti-virus Clamav 0.80 Rc1
Clam Anti-virus Clamav 0.84
Clam Anti-virus Clamav 0.84 Rc1
Clam Anti-virus Clamav 0.86 Rc1
Clam Anti-virus Clamav 0.87
Clam Anti-virus Clamav 0.15
Clam Anti-virus Clamav 0.20
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.71
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »