K7985 : ClamAV clamav-milter vulnerability - CVE-2007-4560

Security Advisory Description

Note: Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F5 security vulnerability response policy.

F5 products and versions that have been evaluated for this Security Advisory

The FirePass controller can be configured to provide anti-virus scanning of files uploaded through Portal Access through the ClamAV open source software. Scanning is configured on the Antivirus tab of the Portal Access: Content Inspection page, through the Enable Standalone virus Scanner option button.

A vulnerability in ClamAV versions prior to version 0.91.2 could allow a remote attacker to crash the scanner process remotely or execute arbitrary commands remotely using a specially crafted SMTP header of an email message. The vulnerability affects the clamav-milter program, when used in conjunction with the Sendmail mail transfer agent package.

The FirePass controller does not use the clamav-milter program for Sendmail. Therefore, the FirePass controller is not vulnerable to the issue described in CVE-2007-4160.

Information about this issue is available at the following location:

<https://vulners.com/cve/CVE-2007-4560&gt;