Clam AntiVirus Two Vulnerabilities

Posted on Saturday, April 14, 2007 @ 12:16:54 CDT in Security
by Raven



SECUNIA ADVISORY ID: SA24891

VERIFY ADVISORY: http://secunia.com/advisories/24891/

CRITICAL: Moderately critical

IMPACT: Unknown

WHERE: >From remote

SOFTWARE: Clam AntiVirus (clamav) 0.x - http://secunia.com/product/2538/

DESCRIPTION: Two vulnerabilities with unknown impact have been reported in Clam AntiVirus.

1) An unspecified file descriptor leak error exists within libclamav/chmunpack.c.

2) An unspecified error in libclamav/cab.c can be exploited to cause a buffer overflow.

SOLUTION: Update to version 0.90.2.

PROVIDED AND/OR DISCOVERED BY: Reported by the vendor.

ORIGINAL ADVISORY: http://sourceforge.net/project/shownotes.php?release_id=500765
 
 
click Related        click Share
 
News ©

Site Info

Last SeenLast Seen
  • vashd1
  • neralex
Server TrafficServer Traffic
  • Total: 513,705,969
  • Today: 41,158
Server InfoServer Info
  • Apr 27, 2025
  • 11:32 am CDT
 
 

Site Navigation