FreeBSD : clamav -- CHM unpacker and PE rebuilding vulnerabilities (8012a79d-5d21-11db-bb8d-00123ffe8333)
High Nessus Plugin ID 22886
The remote FreeBSD host is missing one or more security-related updates.
Secunia reports : Two vulnerabilities have been reported in Clam AntiVirus, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system. 1) An unspecified error in the CHM unpacker in chmunpack.c can be exploited to cause a DoS. 2) An unspecified error in rebuildpe.c when rebuilding PE files after unpacking can be exploited to cause a heap-based buffer overflow.