ClamAV < 0.95.1 Multiple Vulnerabilities (deprecated)

Medium Nessus Network Monitor Plugin ID 4986


The remote host is vulnerable to multiple attack vectors.


According to its version, the clamd antivirus daemon on the remote host is earlier than 0.95.1. Such versions are affected by multiple vulnerabilities :

- ClamAV might crash while scanning certain malicious files packed with UPack. (Bug #1552)

- ClamAV might crash while using 'cli_url_canon'. (Bug #1553)


Upgrade to version 0.95.1 or higher.

See Also

Plugin Details

Severity: Medium

ID: 4986

Family: Web Clients

Published: 2009/04/14

Updated: 2019/03/06

Dependencies: 1735, 8314

Nessus ID: 36131

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 4.3

Temporal Score: 3.2

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSS v3.0

Base Score: 3.6

Temporal Score: 3.1

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Reference Information

CVE: CVE-2009-1371, CVE-2009-1372

BID: 34446