Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2006-2021 Tenable Network Security, Inc.SUSE_SA_2006_020.NASL
HistoryApr 17, 2006 - 12:00 a.m.

SUSE-SA:2006:020: clamav

2006-04-1700:00:00
This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.
www.tenable.com
9
JSON

The remote host is missing the patch for the advisory SUSE-SA:2006:020 (clamav).

Clamav was updated to version 0.88.1 to fix the following security problems:

  • An integer overflow in the PE header parser (CVE-2006-1614).

  • Format string bugs in the logging code could potentially be exploited to execute arbitrary code (CVE-2006-1615).

  • Access to invalid memory could lead to a crash (CVE-2006-1630).

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# This plugin text was extracted from SuSE Security Advisory SUSE-SA:2006:020
#


if ( ! defined_func("bn_random") ) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if(description)
{
 script_id(21233);
 script_version("1.9");
 
 name["english"] = "SUSE-SA:2006:020: clamav";
 
 script_name(english:name["english"]);
 
 script_set_attribute(attribute:"synopsis", value:
"The remote host is missing a vendor-supplied security patch" );
 script_set_attribute(attribute:"description", value:
"The remote host is missing the patch for the advisory SUSE-SA:2006:020 (clamav).


Clamav was updated to version 0.88.1 to fix the following security
problems:

- An integer overflow in the PE header parser (CVE-2006-1614).

- Format string bugs in the logging code could potentially be
exploited to execute arbitrary code (CVE-2006-1615).

- Access to invalid memory could lead to a crash (CVE-2006-1630)." );
 script_set_attribute(attribute:"solution", value:
"http://www.suse.de/security/advisories/2006_20_clamav.html" );
 script_set_attribute(attribute:"risk_factor", value:"High" );



 script_set_attribute(attribute:"plugin_publication_date", value: "2006/04/17");
 script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
 script_end_attributes();

 
 summary["english"] = "Check for the version of the clamav package";
 script_summary(english:summary["english"]);
 
 script_category(ACT_GATHER_INFO);
 
 script_copyright(english:"This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.");
 family["english"] = "SuSE Local Security Checks";
 script_family(english:family["english"]);
 
 script_dependencies("ssh_get_info.nasl");
 script_require_keys("Host/SuSE/rpm-list");
 exit(0);
}

include("rpm.inc");
if ( rpm_check( reference:"clamav-0.88.1-0.2", release:"SUSE10.0") )
{
 security_hole(0);
 exit(0);
}
if ( rpm_check( reference:"clamav-0.88.1-0.4", release:"SUSE9.1") )
{
 security_hole(0);
 exit(0);
}
if ( rpm_check( reference:"clamav-0.88.1-0.2", release:"SUSE9.2") )
{
 security_hole(0);
 exit(0);
}
if ( rpm_check( reference:"clamav-0.88.1-0.2", release:"SUSE9.3") )
{
 security_hole(0);
 exit(0);
}

Related

openvas 6
altlinux 3
debian 1
nessus 5
freebsd 1
suse 1
osv 1
gentoo 1
prion 3
ubuntucve 3
debiancve 3
cve 3
checkpoint_advisories 1
openvas
openvas
Gentoo Security Advisory GLSA 200604-06 (clamav)
2008-09-24 00:00:00
FreeBSD Ports: clamav
2008-09-04 00:00:00
Debian Security Advisory DSA 1024-1 (clamav)
2008-01-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package clamav version 0.88.1-alt1
2006-04-06 00:00:00
Security fix for the ALT Linux 10 package clamav version 0.88.1-alt1
2006-04-06 00:00:00
Security fix for the ALT Linux 8 package clamav version 0.88.1-alt1
2006-04-06 00:00:00
debian
debian
[SECURITY] [DSA 1024-1] New clamav packages fix several vulnerabilities
2006-04-05 00:00:00
nessus
nessus
Debian DSA-1024-1 : clamav - several vulnerabilities
2006-10-14 00:00:00
GLSA-200604-06 : ClamAV: Multiple vulnerabilities
2006-04-08 00:00:00
FreeBSD : clamav -- Multiple Vulnerabilities (6a5174bd-c580-11da-9110-00123ffe8333)
2006-05-13 00:00:00
freebsd
freebsd
clamav -- Multiple Vulnerabilities
2006-04-06 00:00:00
suse
suse
remote code execution in clamav
2006-04-11 13:11:47
osv
osv
clamav - heap overflow
2006-04-05 00:00:00
gentoo
gentoo
ClamAV: Multiple vulnerabilities
2006-04-07 00:00:00
prion
prion
Integer overflow
2006-04-06 22:04:00
Design/Logic Flaw
2006-04-06 22:04:00
Format string
2006-04-06 22:04:00
ubuntucve
ubuntucve
CVE-2006-1614
2006-04-06 00:00:00
CVE-2006-1630
2006-04-06 00:00:00
CVE-2006-1615
2006-04-06 00:00:00
debiancve
debiancve
CVE-2006-1614
2006-04-06 22:04:00
CVE-2006-1630
2006-04-06 22:04:00
CVE-2006-1615
2006-04-06 22:04:00
cve
cve
CVE-2006-1614
2006-04-06 22:04:00
CVE-2006-1615
2006-04-06 22:04:00
CVE-2006-1630
2006-04-06 22:04:00
checkpoint_advisories
checkpoint_advisories
ClamAV Output Log Handling Format String (CVE-2006-1615)
2010-03-21 00:00:00
JSON
Related for SUSE_SA_2006_020.NASL
openvas6altlinux3debian1nessus5freebsd1suse1osv1gentoo1prion3ubuntucve3debiancve3cve3checkpoint_advisories1