CVE-2011-1003

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Double free vulnerability in the vba_read_project_strings function in vba_extract.c in libclamav in ClamAV before 0.97 might allow remote attackers to execute arbitrary code via crafted Visual Basic for Applications (VBA) data in a Microsoft Office document. NOTE: some of these details are obtained from third party information.

References

http://git.clamav.net/gitweb?p=clamav-devel.git;a=blob;f=ChangeLog;hb=clamav-0.97

http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=d21fb8d975f8c9688894a8cef4d50d977022e09f

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055771.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055777.html

http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html

http://openwall.com/lists/oss-security/2011/02/21/1

http://openwall.com/lists/oss-security/2011/02/21/4

http://osvdb.org/70937

http://secunia.com/advisories/43392

http://secunia.com/advisories/43498

http://secunia.com/advisories/43752

http://securitytracker.com/id?1025100

http://www.mandriva.com/en/support/security/advisories/?name=MDVA-2011:007

http://www.securityfocus.com/bid/46470

http://www.ubuntu.com/usn/USN-1076-1

http://www.vupen.com/english/advisories/2011/0453

http://www.vupen.com/english/advisories/2011/0458

http://www.vupen.com/english/advisories/2011/0523

https://exchange.xforce.ibmcloud.com/vulnerabilities/65544

https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2486

Details

Source: MITRE

Published: 2011-02-23

Updated: 2017-08-17

Type: CWE-399

Risk Information

CVSS v2

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:clamav:clamav:0.01:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.02:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.3:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.05:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.8:rc3:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.9:rc1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.10:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.12:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.13:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.14:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.14:pre:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.15:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.20:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.21:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.22:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.23:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.24:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.51:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.52:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.53:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.54:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.60:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.60p:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.65:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.66:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.67:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.67-1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.68:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.68.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.70:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.70:rc:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.71:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.72:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.73:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.74:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.75:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.75.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.80:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.80:rc:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.80:rc1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.80:rc2:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.80:rc3:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.80:rc4:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.80_rc:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.81:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.81:rc1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.82:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.83:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.84:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.84:rc1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.84:rc2:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.85:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.85.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.86:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.86:rc1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.86.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.86.2:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.87:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.87.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.88:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.88.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.88.2:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.88.3:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.88.4:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.88.5:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.88.6:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.88.7:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.88.7_p0:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.88.7_p1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90:rc1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90:rc1.1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90:rc2:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90:rc3:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90.1_p0:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90.2:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90.2_p0:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90.3:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90.3_p0:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.90.3_p1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.91:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.91:rc1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.91:rc2:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.91.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.91.2:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.91.2_p0:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.92:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.92.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.92_p0:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.93:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.93.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.93.2:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.93.3:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.94:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.94.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.94.2:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.95:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.95:rc1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.95:rc2:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.95:src1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.95:src2:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.95.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.95.2:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.95.3:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.96:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.96:rc1:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.96:rc2:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.96.1:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.96.2:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.96.3:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:0.96.4:*:*:*:*:*:*:*

cpe:2.3:a:clamav:clamav:*:*:*:*:*:*:*:* versions up to 0.96.5 (inclusive)

Tenable Plugins

View all (12 total)

IDNameProductFamilySeverity
75450openSUSE Security Update : clamav (openSUSE-SU-2011:0208-1)NessusSuSE Local Security Checks
medium
57167SuSE 10 Security Update : clamav (ZYPP Patch Number 7397)NessusSuSE Local Security Checks
medium
56595GLSA-201110-20 : Clam AntiVirus: Multiple vulnerabilitiesNessusGentoo Local Security Checks
high
53702openSUSE Security Update : clamav (openSUSE-SU-2011:0208-1)NessusSuSE Local Security Checks
medium
52989SuSE 10 Security Update : clamav (ZYPP Patch Number 7380)NessusSuSE Local Security Checks
medium
52765SuSE 11.1 Security Update : clamav (SAT Patch Number 4155)NessusSuSE Local Security Checks
medium
52647Fedora 14 : clamav-0.97-1400.fc14 (2011-2743)NessusFedora Local Security Checks
medium
52646Fedora 13 : clamav-0.97-1300.fc13 (2011-2741)NessusFedora Local Security Checks
medium
52591Fedora 15 : clamav-0.97-1500.fc15 (2011-2732)NessusFedora Local Security Checks
medium
52478Ubuntu 9.10 / 10.04 LTS / 10.10 : clamav vulnerability (USN-1076-1)NessusUbuntu Local Security Checks
medium
5796ClamAV < 0.97 Multiple VulnerabilitiesNessus Network MonitorWeb Clients
high
51935ClamAV < 0.97 Multiple VulnerabilitiesNessusMisc.
high