Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

ClamAV < 0.99.1 Multiple Vulnerabilities

High

Synopsis

The remote host is running an anti-virus application that is affected by multiple vulnerabilities.

Description

Versions of ClamAV prior to 0.99.1 are potentially affected by the following vulnerabilities :

- An out-of-bounds read flaw exists in the 'ea05()' and 'ea06()' functions in 'autoit.c'. This may allow a context-dependent attacker to cause a denial of service. (OSVDB 130951) - An out-of-bounds read flaw affects the 'rijndaelSetupEncrypt()' function in 'rijndael.c'. The issue is triggered during the decryption of PDF files. This may allow a context-dependent attacker to cause a denial of service. (OSVDB 130952) - An out-of-bounds read flaw exists in the 'parseEmailFile()' function in 'mbox.c'. This may allow a context-dependent attacker to cause a denial of service. (OSVDB 130953) - An out-of-bounds write flaw exists in the 'screnc_decode()' function in 'htmlnorm.c' that may allow a context-dependent attacker to have an unspecified impact that may potentially include the execution of arbitrary code. (OSVDB 130954) - An overflow condition affects the 'wwunpack()' function in 'wwunpack.c'. The issue is triggered as user-supplied input is not properly validated. This may allow a context-dependent attacker to cause a heap-based buffer overflow, resulting in a denial of service. (OSVDB 130955) - An out-of-bounds write flaw affects the 'handle_df()' function in 'js-norm.c' that allows a context-dependent attacker to write to adjacent buffers. This may allow the attacker to have an unspecified impact that may potentially include the execution of arbitrary code. (OSVDB 130956) - A flaw exists that is triggered during the handling of a specially crafted '.7z' file. This may allow a context-dependent attacker to cause a memory overlay and crash the program, which can leave the system vulnerable to other attacks. (OSVDB 135660) - An integer underflow condition exists that is triggered as user-supplied input is not properly validated. This may allow an attacker to have an unspecified impact. No further details have been provided. (OSVDB 136534)

Solution

Upgrade to ClamAV 0.99.1 or later.