Heap-based buffer overflow in the pefromupx function in libclamav/upx.c in Clam AntiVirus (ClamAV) 0.81 up to and including 0.88.3 allows remote malicious users to execute arbitrary code via a crafted UPX packed file containing sections with large rsize values.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
clamav clamav 0.84 |
||
clamav clamav 0.86 |
||
clamav clamav 0.87.1 |
||
clamav clamav 0.81 |
||
clamav clamav 0.85.1 |
||
clamav clamav 0.88.2 |
||
clamav clamav 0.88.3 |
||
clamav clamav 0.82 |
||
clamav clamav 0.83 |
||
clamav clamav 0.86.1 |
||
clamav clamav 0.86.2 |
||
clamav clamav 0.85 |
||
clamav clamav 0.87 |
||
clamav clamav 0.88 |
||
clamav clamav 0.88.1 |