ClamAV < 0.96.1 Multiple Vulnerabilities
Medium Nessus Network Monitor Plugin ID 5548
SynopsisThe remote host is running an anti-virus application that is vulnerable to multiple attack vectors.
DescriptionVersions of ClamAV earlier than 0.96.1 are potentially affected by multiple vulnerabilities :
- An error exists within the 'cli_pdf()' function in 'libclamav/pdf.c' when processing certain PDF files. (2016)
- An error exists within the 'parseicon()' function in 'libclamav/pe_icons.c' when processing PE icons. This can be exploited to trigger an out-of-bounds access when reading data and potentially cause a crash via a specially crafted PE file. (2031)
SolutionUpgrade to ClamAV 0.96.1 or later.