clam anti-virus clamav 0.92.1 vulnerabilities and exploits

(subscribe to this query)

Buffer overflow in the cli_scanpe function in libclamav (libclamav/pe.c) for ClamAV 0.92 and 0.92.1 allows remote malicious users to execute arbitrary code via a crafted Upack PE file.

Clam Anti-virus Clamav 0.92 Clam Anti-virus Clamav 0.92.1

libclamav/petite.c in ClamAV prior to 0.93.3 allows remote malicious users to cause a denial of service via a malformed Petite file that triggers an out-of-bounds memory access. NOTE: this issue exists because of an incomplete fix for CVE-2008-2713.

Clam Anti-virus Clamav 0.88.2 Clam Anti-virus Clamav 0.88.4 Clam Anti-virus Clamav 0.88.5 Clam Anti-virus Clamav 0.88.6 Clam Anti-virus Clamav 0.88.7 Clam Anti-virus Clamav 0.90 Clam Anti-virus Clamav 0.90.1 Clam Anti-virus Clamav 0.90.2 Clam Anti-virus Clamav 0.90.3 Clam Anti-virus Clamav 0.91.2 Clam Anti-virus Clamav 0.92 Clam Anti-virus Clamav 0.92.1

Heap-based buffer overflow in pe.c in libclamav in ClamAV 0.92.1 allows remote malicious users to execute arbitrary code via a crafted WWPack compressed PE binary.

Clam Anti-virus Clamav 0.92.1

Heap-based buffer overflow in spin.c in libclamav in ClamAV 0.92.1 allows remote malicious users to execute arbitrary code via a crafted PeSpin packed PE binary with a modified length value.

Clam Anti-virus Clamav 0.92.1

Stack consumption vulnerability in libclamav/special.c in ClamAV prior to 0.94.2 allows remote malicious users to cause a denial of service (daemon crash) via a crafted JPEG file, related to the cli_check_jpeg_exploit, jpeg_check_photoshop, and jpeg_check_photoshop_8bim functions...

Clam Anti-virus Clamav Clam Anti-virus Clamav 0.70 Clam Anti-virus Clamav 0.71 Clam Anti-virus Clamav 0.72 Clam Anti-virus Clamav 0.73 Clam Anti-virus Clamav 0.74 Clam Anti-virus Clamav 0.75 Clam Anti-virus Clamav 0.75.1 Clam Anti-virus Clamav 0.80 Clam Anti-virus Clamav 0.81 Clam Anti-virus Clamav 0.82 Clam Anti-virus Clamav 0.83

1 EDB exploit

libclamav/chmunpack.c in the chm-parser in ClamAV prior to 0.94 allows remote malicious users to cause a denial of service (application crash) via a malformed CHM file, related to an "invalid memory access."

Clam Anti-virus Clamav Clam Anti-virus Clamav 0.11 Clam Anti-virus Clamav 0.12 Clam Anti-virus Clamav 0.13 Clam Anti-virus Clamav 0.14 Clam Anti-virus Clamav 0.15 Clam Anti-virus Clamav 0.20 Clam Anti-virus Clamav 0.21 Clam Anti-virus Clamav 0.22 Clam Anti-virus Clamav 0.23 Clam Anti-virus Clamav 0.24 Clam Anti-virus Clamav 0.51

Off-by-one error in the get_unicode_name function (libclamav/vba_extract.c) in Clam Anti-Virus (ClamAV) prior to 0.94.1 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-base...

Clam Anti-virus Clamav Clam Anti-virus Clamav 0.01 Clam Anti-virus Clamav 0.02 Clam Anti-virus Clamav 0.03 Clam Anti-virus Clamav 0.04 Clam Anti-virus Clamav 0.05 Clam Anti-virus Clamav 0.06 Clam Anti-virus Clamav 0.10 Clam Anti-virus Clamav 0.11 Clam Anti-virus Clamav 0.12 Clam Anti-virus Clamav 0.13 Clam Anti-virus Clamav 0.14

Integer overflow in the cli_scanpe function in libclamav in ClamAV prior to 0.92.1, as used in clamd, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted Petite packed PE file, which triggers a heap-based buffer overflow.

Clam Anti-virus Clamav

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook