ClamAV < 0.95.2 File Scan Evasion (deprecated)
Medium Nessus Network Monitor Plugin ID 5073
SynopsisThe remote host is running an anti-virus application that is affected by a file scan evasion vulnerability.
DescriptionAccording to its version, the clamd anti-virus daemon on the remote host is earlier than 0.95.2. Such versions are reportedly affected by a file scan evasion vulnerability. An attacker could exploit this flaw by embedding malicious code in a specially crafted 'CAB', 'RAR', or 'ZIP' archive in order to bypass the anti-virus software.
SolutionUpgrade to ClamAV 0.95.2 or later.