SUSE-SA:2006:060: clamav

This script is Copyright (C) 2007-2010 Tenable Network Security, Inc.

Synopsis :

The remote host is missing a vendor-supplied security patch

Description :

The remote host is missing the patch for the advisory SUSE-SA:2006:060 (clamav).

Two security problems have been found and fixed in the anti virus
scan engine 'clamav', which could be used by remote attackers
sending prepared E-Mails containing special crafted infected files
to potentially execute code.

CVE-2006-4182: A problem in dealing with PE (Portable Executables aka
Windows .EXE) files could result in an integer overflow, causing a heap
overflow, which could be used by attackers to potentially execute code.

CVE-2006-5295: A problem in dealing with CHM (compressed help file)
exists that could cause an invalid memory read, causing the clamav
engine to crash.

Solution :

Risk factor :


Family: SuSE Local Security Checks

Nessus Plugin ID: 24438 ()

Bugtraq ID:


Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now