This script is Copyright (C) 2011-2014 Tenable Network Security, Inc.
The remote antivirus service is affected by multiple vulnerabilities.
According to its version, the clamd antivirus daemon on the remote
host is earlier than 0.97. Such versions reportedly are affected by
multiple vulnerabilities :
- As-yet unspecified double-free issues involving an error
path exist in 'libclamav/vba_extract.c' and
'shared/cdiff.c'. (Bug 2486 and report from
- 'libclamav/pdf.c' may miss detection. (Bug 2455)
- Multiple as-yet unspecified error path leaks exit in
'clamav-milter/whitelist.c', 'clamscan/manager.c', and
'libclamav/sis.c'. (Report from <mt*debian.org>)
See also :
Upgrade to ClamAV 0.97 or later.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 5.5
Public Exploit Available : false