Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clam anti-virus vulnerabilities and exploits
(subscribe to this query)
5.1
CVSSv2
CVE-2006-1989
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.88
6.8
CVSSv2
CVE-2007-6336
Off-by-one error in ClamAV prior to 0.92 allows remote malicious users to execute arbitrary code via a crafted MS-ZIP compressed CAB file.
Clam Anti-virus Clamav
7.5
CVSSv2
CVE-2007-6335
Integer overflow in libclamav in ClamAV prior to 0.92 allows remote malicious users to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.
Clam Anti-virus Clamav
1 EDB exploit
7.8
CVSSv2
CVE-2005-3239
The OLE2 unpacker in clamd in Clam AntiVirus (ClamAV) 0.87-1 allows remote malicious users to cause a denial of service (segmentation fault) via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2_walk_property_tree function.
Clam Anti-virus Clamav .
7.5
CVSSv2
CVE-2005-1795
The filecopy function in misc.c in Clam AntiVirus (ClamAV) prior to 0.85, on Mac OS, allows remote malicious users to execute arbitrary code via a virus in a filename that contains shell metacharacters, which are not properly handled when HFS permissions prevent the file from bei...
Clam Anti-virus Clamav
10
CVSSv2
CVE-2008-0318
Integer overflow in the cli_scanpe function in libclamav in ClamAV prior to 0.92.1, as used in clamd, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a crafted Petite packed PE file, which triggers a heap-based buffer overflow.
Clam Anti-virus Clamav
7.6
CVSSv2
CVE-2007-4560
clamav-milter in ClamAV prior to 0.91.2, when run in black hole mode, allows remote malicious users to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail."
Clam Anti-virus Clamav
3 EDB exploits
2 Github repositories
7.5
CVSSv2
CVE-2008-0314
Heap-based buffer overflow in spin.c in libclamav in ClamAV 0.92.1 allows remote malicious users to execute arbitrary code via a crafted PeSpin packed PE binary with a modified length value.
Clam Anti-virus Clamav 0.92.1
7.5
CVSSv2
CVE-2008-1833
Heap-based buffer overflow in pe.c in libclamav in ClamAV 0.92.1 allows remote malicious users to execute arbitrary code via a crafted WWPack compressed PE binary.
Clam Anti-virus Clamav 0.92.1
2.1
CVSSv2
CVE-2007-6595
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.
Clam Anti-virus Clamav 0.92
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »