icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

ClamAV < 0.88.2 HTTP Header Remote Overflow

Medium

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running ClamAV, an antivirus application. There is a remote buffer overflow within this version of ClamAV. Specifically, if an attacker were able to spoof or gain control of a ClamAV update server, the attacker could craft a malicious HTTP response that would trigger a buffer overflow. Successful exploitation would result in the execution of arbitrary code.

Solution

Upgrade to version 0.88.2 or higher.