ClamAV < 0.94 Multiple Vulnerabilities (deprecated)

High Nessus Network Monitor Plugin ID 4787


The remote antivirus service is affected by multiple issues.


According to its version, the clamd antivirus daemon on the remote host is earlier than 0.94. Such versions are affected by one or more of the following issues :

- A segmentation fault can occur when processing corrupted LZH files. (Bug #1052)

- Invalid memory access errors in 'libclamav/chmunpack.c' when processing malformed CHM files may lead to a crash. (Bug #1089)

- An out-of-memory null dereference issue exists in 'libclamav/message.c' / 'libclamav/mbox.c'. (Bug #1141)

- Possible error path memory leaks exist in 'freshclam/manager.c'. (Bug #1141)

- There is an invalid close on error path in 'shared/tar.c'. (Bug #1141)

- There are multiple file descriptor leaks involving the 'error path' in 'libclamav/others.c' and 'libclamav/sis.c'. (Bug #1141).


Upgrade to version 0.94 or higher.

See Also;release_id=623661

Plugin Details

Severity: High

ID: 4787

File Name: 4787.prm

Family: Web Clients

Published: 2008/12/12

Modified: 2016/01/15

Dependencies: 1735, 8314

Nessus ID: 35087

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 5.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C


Base Score: 7.3

Temporal Score: 6.4


Temporal Vector: CVSS3#E:U/RL:O/RC:C

Reference Information

CVE: CVE-2008-6845, CVE-2008-1389, CVE-2008-3912, CVE-2008-3913, CVE-2008-3914

BID: 30994, 31051, 32752