Published: 03/08/2005 Updated: 11/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and previous versions allow remote malicious users to gain privileges via a crafted e-mail message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
clam anti-virus clamav 0.85.1
clam anti-virus clamav 0.86
clam anti-virus clamav 0.85

Several bugs were discovered in Clam AntiVirus, the antivirus scanner for Unix, designed for integration with mail servers to perform attachment scanning The following problems were identified: CAN-2005-2450 Neel Mehta and Alex Wheeler discovered that Clam AntiVirus is vulnerable to integer overflows when handling the TNEF, CHM and FS ...

NVD-CWE-Other http://sourceforge.net/project/shownotes.php?release_id=344514 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000987 http://security.gentoo.org/glsa/glsa-200507-25.xml http://www.securityfocus.com/bid/14359 http://www.osvdb.org/18257 http://www.osvdb.org/18258 http://www.osvdb.org/18259 http://secunia.com/advisories/16180 http://secunia.com/advisories/16229 http://secunia.com/advisories/16250 http://secunia.com/advisories/16296 http://secunia.com/advisories/16458 http://www.novell.com/linux/security/advisories/2005_18_sr.html http://marc.info/?l=bugtraq&m=112230864412932&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/21555 https://nvd.nist.gov https://www.debian.org/security/./dsa-776

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-2450

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect