Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

ClamAV < 0.95.2 File Scan Evasion (deprecated)

Medium

Synopsis

The remote host is running an anti-virus application that is affected by a file scan evasion vulnerability.

Description

According to its version, the clamd anti-virus daemon on the remote host is earlier than 0.95.2. Such versions are reportedly affected by a file scan evasion vulnerability. An attacker could exploit this flaw by embedding malicious code in a specially crafted 'CAB', 'RAR', or 'ZIP' archive in order to bypass the anti-virus software.

Solution

Upgrade to ClamAV 0.95.2 or later.