Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav clamav 0.83 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-4018
Heap-based buffer overflow in the pefromupx function in libclamav/upx.c in Clam AntiVirus (ClamAV) 0.81 up to and including 0.88.3 allows remote malicious users to execute arbitrary code via a crafted UPX packed file containing sections with large rsize values.
Clamav Clamav 0.84
Clamav Clamav 0.86
Clamav Clamav 0.87.1
Clamav Clamav 0.81
Clamav Clamav 0.85.1
Clamav Clamav 0.88.2
Clamav Clamav 0.88.3
Clamav Clamav 0.82
Clamav Clamav 0.83
Clamav Clamav 0.86.1
Clamav Clamav 0.86.2
Clamav Clamav 0.85
Clamav Clamav 0.87
Clamav Clamav 0.88
Clamav Clamav 0.88.1
1 EDB exploit
4.3
CVSSv2
CVE-2005-1800
Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote malicious users to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to index.php.
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.82
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.84 Rc1
1 EDB exploit
2.6
CVSSv2
CVE-2005-1923
The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote malicious users to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes ...
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.84 Rc2
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.84 Rc1
Clam Anti-virus Clamav 0.85
5
CVSSv2
CVE-2005-1922
The MS-Expand file handling in Clam AntiVirus (ClamAV) prior to 0.86 allows remote malicious users to cause a denial of service (file descriptor and memory consumption) via a crafted file that causes repeated errors in the cli_msexpand function.
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.82
Clam Anti-virus Clamav 0.84 Rc1
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.84 Rc2
4.3
CVSSv2
CVE-2005-3501
The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) prior to 0.87.1 allows remote malicious users to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero length.
Clamav Clamav 0.14
Clamav Clamav 0.01
Clamav Clamav 0.21
Clamav Clamav 0.22
Clamav Clamav 0.15
Clamav Clamav 0.71
Clamav Clamav 0.72
Clamav Clamav 0.73
Clamav Clamav 0.74
Clamav Clamav 0.83
Clamav Clamav 0.84
Clamav Clamav 0.60p
Clamav Clamav 0.68
Clamav Clamav 0.67
Clamav Clamav 0.70
Clamav Clamav 0.54
Clamav Clamav 0.60
Clamav Clamav 0.52
Clamav Clamav 0.53
Clamav Clamav 0.80
Clamav Clamav 0.86.2
Clamav Clamav 0.86
10
CVSSv2
CVE-2006-1615
Multiple format string vulnerabilities in the logging code in Clam AntiVirus (ClamAV) prior to 0.88.1 might allow remote malicious users to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments ar...
Clamav Clamav 0.21
Clamav Clamav 0.22
Clamav Clamav 0.15
Clamav Clamav 0.52
Clamav Clamav 0.53
Clamav Clamav 0.67
Clamav Clamav 0.70
Clamav Clamav 0.75
Clamav Clamav 0.05
Clamav Clamav 0.03
Clamav Clamav 0.12
Clamav Clamav 0.13
Clamav Clamav 0.24
Clamav Clamav 0.65
Clamav Clamav 0.71
Clamav Clamav 0.74
Clamav Clamav 0.66
Clamav Clamav 0.67-1
Clamav Clamav 0.81
Clamav Clamav 0.82
Clamav Clamav 0.86
Clamav Clamav 0.86.1
7.5
CVSSv2
CVE-2005-3303
The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 up to and including 0.87 allows remote malicious users to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file.
Clam Anti-virus Clamav 0.80
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.86.1
Clam Anti-virus Clamav 0.86.2
Clam Anti-virus Clamav 0.82
Clam Anti-virus Clamav 0.83
Clam Anti-virus Clamav 0.87
Clam Anti-virus Clamav 0.84
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.86
4.3
CVSSv2
CVE-2010-1639
The cli_pdf function in libclamav/pdf.c in ClamAV prior to 0.96.1 allows remote malicious users to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length.
Clamav Clamav 0.95.2
Clamav Clamav 0.86.2
Clamav Clamav 0.88.5
Clamav Clamav 0.02
Clamav Clamav 0.92
Clamav Clamav 0.95
Clamav Clamav 0.15
Clamav Clamav 0.90
Clamav Clamav 0.75.1
Clamav Clamav 0.65
Clamav Clamav 0.88.7
Clamav Clamav 0.81
Clamav Clamav 0.86
Clamav Clamav 0.01
Clamav Clamav 0.85
Clamav Clamav 0.84
Clamav Clamav 0.3
Clamav Clamav 0.93.1
Clamav Clamav 0.95.1
Clamav Clamav 0.93
Clamav Clamav 0.70
Clamav Clamav 0.68.1
5
CVSSv2
CVE-2008-6845
The unpack feature in ClamAV 0.93.3 and previous versions allows remote malicious users to cause a denial of service (segmentation fault) via a corrupted LZH file.
Clamav Clamav 0.93.2
Clamav Clamav 0.88.1
Clamav Clamav 0.88.2
Clamav Clamav 0.88.7 P1
Clamav Clamav 0.90.3 P0
Clamav Clamav 0.90.3 P1
Clamav Clamav 0.90.2 P0
Clamav Clamav 0.92.1
Clamav Clamav 0.65
Clamav Clamav 0.93.1
Clamav Clamav 0.71
Clamav Clamav 0.83
Clamav Clamav 0.84
Clamav Clamav 0.05
Clamav Clamav 0.03
Clamav Clamav 0.14
Clamav Clamav 0.12
Clamav Clamav 0.24
Clamav Clamav 0.90.1
Clamav Clamav 0.67-1
Clamav Clamav 0.80
Clamav Clamav 0.87
10
CVSSv2
CVE-2008-0728
The unmew11 function in libclamav/mew.c in libclamav in ClamAV prior to 0.92.1 has unknown impact and attack vectors that trigger "heap corruption."
Clamav Clamav 0.66
Clamav Clamav 0.67-1
Clamav Clamav 0.80
Clamav Clamav 0.90
Clamav Clamav 0.88
Clamav Clamav 0.87.1
Clamav Clamav 0.88.7 P0
Clamav Clamav 0.88.7
Clamav Clamav 0.90.3 P1
Clamav Clamav 0.90.2 P0
Clamav Clamav 0.90.3
Clamav Clamav 0.68
Clamav Clamav 0.67
Clamav Clamav 0.75.1
Clamav Clamav 0.75
Clamav Clamav 0.85.1
Clamav Clamav 0.86
Clamav Clamav 0.01
Clamav Clamav 0.21
Clamav Clamav 0.54
Clamav Clamav 0.60
Clamav Clamav 0.81
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »