Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

ClamAV < 0.99 DoS

Medium

Synopsis

The remote host is running a version of ClamAV that is affected by a Denial of Service (DoS) attack vector.

Description

Versions of ClamAV prior to 0.99 are affected by a flaw that is triggered when handling the scan of a specially crafted document. This may allow a remote attacker to cause the Advance Malware Protection (AMP) process to restart.

Solution

Upgrade to ClamAV 0.99 or later.