icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

ClamAV < 0.88.5 PE Handler Content-Parsing Overflow

Medium

Synopsis

The remote host is vulnerable to a heap overflow.

Description

The remote host is running ClamAV, an antivirus application. There is a remote content-parsing flaw in this version of ClamAV that could lead to a heap overflow. An attacker sending a malformed PE file would be able to exploit this flaw. Successful exploitation would result in the attacker executing arbitrary code.

Solution

Upgrade to version 0.88.5 or higher.