|
|
>> Clam AntiVirus (ClamAV) Multiple Buffer Overflow and Format String Vulnerabilities
|
Title : Clam AntiVirus (ClamAV) Multiple Buffer Overflow and Format String Vulnerabilities
VUPEN ID : VUPEN/ADV-2006-1258
CVE ID : CVE-2006-1614 - CVE-2006-1615 - CVE-2006-1630
Rated as : Critical 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2006-04-06
|
Multiple vulnerabilities have benn identified in Clam AntiVirus (ClamAV), which could be exploited by remote attackers to execute arbitrary commands or cause a denial of service.
The first issue is due to an integer overflow error in the PE header parser [libclamav/pe.c], which could be exploited by attackers to compromise a vulnerable system where the "ArchiveMaxFileSize" option has been disabled.
The second flaw is due to format string errors in certain logging functions [shared/output.c], which could be exploited by attackers to execute arbitrary commands.
The third vulnerability is due to an invalid memory access in the "cli_bitset_set()" [ibclamav/others.c] function, which could be exploited by attackers to crash a vulnerable application.
Affected Products
Clam AntiVirus (ClamAV) versions prior to 0.88.1
Solution
Upgrade to Clam AntiVirus (ClamAV) version 0.88.1 :
http://sourceforge.net/projects/clamav/
References
http://www.vupen.com/english/advisories/2006/1258
http://sourceforge.net/project/shownotes.php?release_id=407078
Credits
Vulnerabilities reported by Damian Put, David Luyer and the vendor.
ChangeLog
2006-04-06 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
