Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav clamav 0.60 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2003-0946
Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 up to and including 0.60p, and other versions prior to 0.65, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via format string specifiers in the email address argum...
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.60p
383
VMScore
CVE-2005-3501
The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) prior to 0.87.1 allows remote malicious users to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero length.
Clamav Clamav 0.14
Clamav Clamav 0.01
Clamav Clamav 0.21
Clamav Clamav 0.22
Clamav Clamav 0.15
Clamav Clamav 0.71
Clamav Clamav 0.72
Clamav Clamav 0.73
Clamav Clamav 0.74
Clamav Clamav 0.83
Clamav Clamav 0.84
Clamav Clamav 0.60p
Clamav Clamav 0.68
Clamav Clamav 0.67
Clamav Clamav 0.70
Clamav Clamav 0.54
Clamav Clamav 0.60
Clamav Clamav 0.52
Clamav Clamav 0.53
Clamav Clamav 0.80
Clamav Clamav 0.86.2
Clamav Clamav 0.86
409
VMScore
CVE-2004-1876
The "%f" feature in the VirusEvent directive in Clam AntiVirus daemon (clamd) prior to 0.70 allows local users to execute arbitrary commands via shell metacharacters in a file name.
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.51
Clam Anti-virus Clamav 0.68
Clam Anti-virus Clamav 0.68.1
890
VMScore
CVE-2006-1615
Multiple format string vulnerabilities in the logging code in Clam AntiVirus (ClamAV) prior to 0.88.1 might allow remote malicious users to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments ar...
Clamav Clamav 0.21
Clamav Clamav 0.22
Clamav Clamav 0.15
Clamav Clamav 0.52
Clamav Clamav 0.53
Clamav Clamav 0.67
Clamav Clamav 0.70
Clamav Clamav 0.75
Clamav Clamav 0.05
Clamav Clamav 0.03
Clamav Clamav 0.12
Clamav Clamav 0.13
Clamav Clamav 0.24
Clamav Clamav 0.65
Clamav Clamav 0.71
Clamav Clamav 0.74
Clamav Clamav 0.66
Clamav Clamav 0.67-1
Clamav Clamav 0.81
Clamav Clamav 0.82
Clamav Clamav 0.86
Clamav Clamav 0.86.1
445
VMScore
CVE-2005-0133
ClamAV 0.80 and previous versions allows remote malicious users to cause a denial of service (clamd daemon crash) via a ZIP file with malformed headers.
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.68.1
Clam Anti-virus Clamav 0.51
Clam Anti-virus Clamav 0.68
Clam Anti-virus Clamav 0.80
445
VMScore
CVE-2005-0218
ClamAV 0.80 and previous versions allows remote malicious users to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL.
Clam Anti-virus Clamav 0.51
Clam Anti-virus Clamav 0.53
Clam Anti-virus Clamav 0.68
Clam Anti-virus Clamav 0.80
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.52
Clam Anti-virus Clamav 0.68.1
383
VMScore
CVE-2010-1639
The cli_pdf function in libclamav/pdf.c in ClamAV prior to 0.96.1 allows remote malicious users to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length.
Clamav Clamav 0.95.2
Clamav Clamav 0.86.2
Clamav Clamav 0.88.5
Clamav Clamav 0.02
Clamav Clamav 0.92
Clamav Clamav 0.95
Clamav Clamav 0.15
Clamav Clamav 0.90
Clamav Clamav 0.75.1
Clamav Clamav 0.65
Clamav Clamav 0.88.7
Clamav Clamav 0.81
Clamav Clamav 0.86
Clamav Clamav 0.01
Clamav Clamav 0.85
Clamav Clamav 0.84
Clamav Clamav 0.3
Clamav Clamav 0.93.1
Clamav Clamav 0.95.1
Clamav Clamav 0.93
Clamav Clamav 0.70
Clamav Clamav 0.68.1
445
VMScore
CVE-2008-6845
The unpack feature in ClamAV 0.93.3 and previous versions allows remote malicious users to cause a denial of service (segmentation fault) via a corrupted LZH file.
Clamav Clamav 0.93.2
Clamav Clamav 0.88.1
Clamav Clamav 0.88.2
Clamav Clamav 0.88.7 P1
Clamav Clamav 0.90.3 P0
Clamav Clamav 0.90.3 P1
Clamav Clamav 0.90.2 P0
Clamav Clamav 0.92.1
Clamav Clamav 0.65
Clamav Clamav 0.93.1
Clamav Clamav 0.71
Clamav Clamav 0.83
Clamav Clamav 0.84
Clamav Clamav 0.05
Clamav Clamav 0.03
Clamav Clamav 0.14
Clamav Clamav 0.12
Clamav Clamav 0.24
Clamav Clamav 0.90.1
Clamav Clamav 0.67-1
Clamav Clamav 0.80
Clamav Clamav 0.87
890
VMScore
CVE-2008-0728
The unmew11 function in libclamav/mew.c in libclamav in ClamAV prior to 0.92.1 has unknown impact and attack vectors that trigger "heap corruption."
Clamav Clamav 0.66
Clamav Clamav 0.67-1
Clamav Clamav 0.80
Clamav Clamav 0.90
Clamav Clamav 0.88
Clamav Clamav 0.87.1
Clamav Clamav 0.88.7 P0
Clamav Clamav 0.88.7
Clamav Clamav 0.90.3 P1
Clamav Clamav 0.90.2 P0
Clamav Clamav 0.90.3
Clamav Clamav 0.68
Clamav Clamav 0.67
Clamav Clamav 0.75.1
Clamav Clamav 0.75
Clamav Clamav 0.85.1
Clamav Clamav 0.86
Clamav Clamav 0.01
Clamav Clamav 0.21
Clamav Clamav 0.54
Clamav Clamav 0.60
Clamav Clamav 0.81
828
VMScore
CVE-2010-3434
Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV prior to 0.96.3 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. NOTE: some of these details are obtaine...
Clamav Clamav 0.95.2
Clamav Clamav 0.86.2
Clamav Clamav 0.88.5
Clamav Clamav 0.02
Clamav Clamav 0.92
Clamav Clamav 0.95
Clamav Clamav 0.15
Clamav Clamav 0.90
Clamav Clamav 0.75.1
Clamav Clamav 0.65
Clamav Clamav 0.88.7
Clamav Clamav 0.81
Clamav Clamav 0.86
Clamav Clamav 0.01
Clamav Clamav 0.92 P0
Clamav Clamav 0.85
Clamav Clamav 0.84
Clamav Clamav 0.3
Clamav Clamav 0.91.2 P0
Clamav Clamav 0.93.1
Clamav Clamav 0.95.1
Clamav Clamav 0.93
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »