icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

ClamAV < 0.95.2 File Scan Evasion

Medium

Synopsis

The remote host is running an anti-virus application that is affected by a file scan evasion vulnerability.

Description

According to its version, the clamd anti-virus daemon on the remote host is earlier than 0.95.2. Such versions are reportedly affected by a file scan evasion vulnerability. An attacker could exploit this flaw by embedding malicious code in a specially crafted 'CAB', 'RAR', or 'ZIP' archive in order to bypass the anti-virus software.

Solution

Upgrade to ClamAV 0.95.2 or later.