Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
clamav vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2014-9328
ClamAV prior to 0.98.6 allows remote malicious users to have unspecified impact via a crafted upack packer file, related to a "heap out of bounds condition."
Fedoraproject Fedora 20
Fedoraproject Fedora 21
Clamav Clamav
5
CVSSv2
CVE-2020-3123
A vulnerability in the Data-Loss-Prevention (DLP) module in Clam AntiVirus (ClamAV) Software versions 0.102.1 and 0.102.0 could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due to an out-of-boun...
Clamav Clamav 0.102.0
Clamav Clamav 0.102.1
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
10
CVSSv2
CVE-2008-1100
Buffer overflow in the cli_scanpe function in libclamav (libclamav/pe.c) for ClamAV 0.92 and 0.92.1 allows remote malicious users to execute arbitrary code via a crafted Upack PE file.
Clam Anti-virus Clamav 0.92
Clam Anti-virus Clamav 0.92.1
7.5
CVSSv2
CVE-2007-6029
Unspecified vulnerability in ClamAV 0.91.1 and 0.91.2 allows remote malicious users to execute arbitrary code via a crafted e-mail message. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendor...
Clam Anti-virus Clamav 0.91.1
Clam Anti-virus Clamav 0.91.2
7.5
CVSSv2
CVE-2003-0946
Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 up to and including 0.60p, and other versions prior to 0.65, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via format string specifiers in the email address argum...
Clam Anti-virus Clamav 0.60
Clam Anti-virus Clamav 0.60p
2.6
CVSSv2
CVE-2004-1909
Claim Anti-Virus (ClamAV) 0.68 and previous versions allows remote malicious users to cause a denial of service (crash) via certain RAR archives, such as those generated by the Beagle/Bagle worm.
Clam Anti-virus Clamav 0.67
Clam Anti-virus Clamav 0.65
4.3
CVSSv2
CVE-2007-2650
The OLE2 parser in Clam AntiVirus (ClamAV) allows remote malicious users to cause a denial of service (resource consumption) via an OLE2 file with (1) a large property size or (2) a loop in the FAT file block chain that triggers an infinite loop, as demonstrated via a crafted DOC...
Clamav Clamav
Debian Debian Linux 3.1
Debian Debian Linux 4.0
5.1
CVSSv2
CVE-2006-1989
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.88
7.1
CVSSv2
CVE-2019-15961
A vulnerability in the email parsing module Clam AntiVirus (ClamAV) Software versions 0.102.0, 0.101.4 and prior could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due to inefficient MIME parsin...
Clamav Clamav
Clamav Clamav 0.102.0
Cisco Email Security Appliance Firmware 11.1.2-023
Cisco Email Security Appliance Firmware 11.1.1-042
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
4.3
CVSSv2
CVE-2007-0897
Clam AntiVirus ClamAV prior to 0.90 does not close open file descriptors under certain conditions, which allows remote malicious users to cause a denial of service (file descriptor consumption and failed scans) via CAB archives with a cabinet header record length of zero, which c...
Clamav Clamav
Apple Mac Os X Server
Debian Debian Linux 3.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »