Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-5050HistoryNov 13, 2008 - 2:30 a.m.
CVE-2008-5050
2008-11-1302:30:00
Debian Security Bug Tracker
security-tracker.debian.org
11
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.054 Low
EPSS
Percentile
93.0%
Off-by-one error in the get_unicode_name function (libclamav/vba_extract.c) in Clam Anti-Virus (ClamAV) before 0.94.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | clamav | < 0.94.dfsg.1-1 | clamav_0.94.dfsg.1-1_all.deb |
| Debian | 11 | all | clamav | < 0.94.dfsg.1-1 | clamav_0.94.dfsg.1-1_all.deb |
| Debian | 10 | all | clamav | < 0.94.dfsg.1-1 | clamav_0.94.dfsg.1-1_all.deb |
| Debian | 999 | all | clamav | < 0.94.dfsg.1-1 | clamav_0.94.dfsg.1-1_all.deb |
| Debian | 13 | all | clamav | < 0.94.dfsg.1-1 | clamav_0.94.dfsg.1-1_all.deb |
Related
prion
prion
Heap overflow
2008-11-13 02:30:00
nessus
nessus
SuSE9 Security Update : clamav (YOU Patch Number 12293)
2012-04-23 00:00:00
SuSE9 Security Update : ClamAV (YOU Patch Number 12292)
2009-09-24 00:00:00
Ubuntu 8.10 : clamav vulnerability (USN-672-1)
2009-04-23 00:00:00
cve
cve
CVE-2008-5050
2008-11-13 02:30:00
openvas
openvas
SLES9: Security update for ClamAV
2009-10-10 00:00:00
ClamAV < 0.94.1 get_unicode_name() Off-By-One Heap based BOF Vulnerability
2008-11-26 00:00:00
Ubuntu: Security Advisory (USN-672-1)
2009-03-23 00:00:00
ubuntu
ubuntu
ClamAV vulnerability
2008-11-17 00:00:00
ubuntucve
ubuntucve
CVE-2008-5050
2008-11-13 00:00:00
freebsd
freebsd
clamav -- off-by-one heap overflow in VBA project parser
2008-11-08 00:00:00
redhatcve
redhatcve
CVE-2008-5050
2019-10-04 20:42:46
debian
debian
[Backports-security-announce] Security Update for clamav
2008-12-15 13:31:51
[Backports-security-announce] Security Update for clamav
2008-12-15 12:36:28
[SECURITY] [DSA 1680-1] New clamav packages fix potential code execution
2008-12-04 08:26:17
osv
osv
clamav - potential code execution
2008-12-04 00:00:00
gentoo
gentoo
ClamAV: Multiple vulnerabilities
2008-12-23 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: clamav-0.93.3-2.fc9
2008-11-14 12:44:50
[SECURITY] Fedora 8 Update: clamav-0.92.1-4.fc8
2008-11-14 12:46:28
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.054 Low
EPSS
Percentile
93.0%
Related for DEBIANCVE:CVE-2008-5050