Mandrake Linux Security Advisory : clamav (MDKSA-2006:138)
High Nessus Plugin ID 23887
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionDamian Put discovered a boundary error in the UPX extraction module in ClamAV which is used to unpack PE Windows executables. This could be abused to cause a Denial of Service issue and potentially allow for the execution of arbitrary code with the permissions of the user running clamscan or clamd.
Updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.