Mandrake Linux Security Advisory : clamav (MDKSA-2005:125)
High Nessus Plugin ID 19886
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionNeel Mehta and Alex Wheeler discovered integer overflow vulnerabilities in Clam AntiVirus when handling the TNEF, CHM, and FSG file formats. By sending a specially crafted file, an attacker could execute arbitrary code with the permissions of the user running Clam AV.
This update provides clamav 0.86.2 which is not vulnerable to these issues.
SolutionUpdate the affected packages.