Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-200605-03
HistoryMay 02, 2006 - 12:00 a.m.

ClamAV: Buffer overflow in Freshclam

2006-05-0200:00:00
Gentoo Foundation
security.gentoo.org
16

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.068 Low

EPSS

Percentile

93.8%

JSON

Background

ClamAV is a GPL virus scanner. Freshclam is a utility to download virus signature updates.

Description

Ulf Harnhammar and an anonymous German researcher discovered that Freshclam fails to check the size of the header data returned by a webserver.

Impact

By enticing a user to connect to a malicious webserver an attacker could cause the execution of arbitrary code.

Workaround

There is no known workaround at this time.

Resolution

All ClamAV users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=app-antivirus/clamav-0.88.2"
OSVersionArchitecturePackageVersionFilename
Gentooanyallapp-antivirus/clamav< 0.88.2UNKNOWN

Related

debiancve 1
debian 2
openvas 6
nessus 5
cert 1
freebsd 1
prion 1
osv 1
ubuntucve 1
cve 1
suse 1
debiancve
debiancve
CVE-2006-1989
2006-05-01 19:06:00
debian
debian
[SECURITY] [DSA 1050-1] New ClamAV packages fix denial of service or arbitrary code execution
2006-05-03 15:24:49
[SECURITY] [DSA 1050-1] New ClamAV packages fix denial of service or arbitrary code execution
2006-05-03 15:24:49
openvas
openvas
Gentoo Security Advisory GLSA 200605-03 (clamav)
2008-09-24 00:00:00
Debian Security Advisory DSA 1050-1 (clamav)
2008-01-17 00:00:00
FreeBSD Ports: clamav
2008-09-04 00:00:00
nessus
nessus
FreeBSD : clamav -- Freshclam HTTP Header Buffer Overflow Vulnerability (b088bf48-da3b-11da-93e0-00123ffe8333)
2006-05-13 00:00:00
Debian DSA-1050-1 : clamav - buffer overflow
2006-10-14 00:00:00
Mandrake Linux Security Advisory : clamav (MDKSA-2006:080)
2006-05-03 00:00:00
cert
cert
ClamAV vulnerable to buffer overflow via malicious database mirror
2006-06-28 00:00:00
freebsd
freebsd
clamav -- Freshclam HTTP Header Buffer Overflow Vulnerability
2006-05-01 00:00:00
prion
prion
Buffer overflow
2006-05-01 19:06:00
osv
osv
clamav - buffer overflow
2006-05-02 00:00:00
ubuntucve
ubuntucve
CVE-2006-1989
2006-05-01 00:00:00
cve
cve
CVE-2006-1989
2006-05-01 19:06:00
suse
suse
remote denial of service in cyrus-sasl-digestmd5
2006-05-05 14:16:08

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.068 Low

EPSS

Percentile

93.8%

JSON
Related for GLSA-200605-03
debiancve1debian2openvas6nessus5cert1freebsd1prion1osv1ubuntucve1cve1suse1