Lucene search
Ubuntu Security Notice (C) 2011-2019 Canonical, Inc. / NASL script (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-1258-1.NASLHistoryNov 11, 2011 - 12:00 a.m.
Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : clamav vulnerability (USN-1258-1)
2011-11-1100:00:00
Ubuntu Security Notice (C) 2011-2019 Canonical, Inc. / NASL script (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.024 Low
EPSS
Percentile
90.0%
Stephane Chazelas discovered the bytecode engine of ClamAV improperly handled recursion under certain circumstances. This could allow a remote attacker to craft a file that could cause ClamAV to crash, resulting in a denial of service.
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-1258-1. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include("compat.inc");
if (description)
{
script_id(56777);
script_version("1.9");
script_cvs_date("Date: 2019/09/19 12:54:27");
script_cve_id("CVE-2011-3627");
script_bugtraq_id(50183);
script_xref(name:"USN", value:"1258-1");
script_name(english:"Ubuntu 10.04 LTS / 10.10 / 11.04 / 11.10 : clamav vulnerability (USN-1258-1)");
script_summary(english:"Checks dpkg output for updated package.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Ubuntu host is missing a security-related patch."
);
script_set_attribute(
attribute:"description",
value:
"Stephane Chazelas discovered the bytecode engine of ClamAV improperly
handled recursion under certain circumstances. This could allow a
remote attacker to craft a file that could cause ClamAV to crash,
resulting in a denial of service.
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://usn.ubuntu.com/1258-1/"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected libclamav6 package."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libclamav6");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:10.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:10.10");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:11.04");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:11.10");
script_set_attribute(attribute:"vuln_publication_date", value:"2011/11/17");
script_set_attribute(attribute:"patch_publication_date", value:"2011/11/10");
script_set_attribute(attribute:"plugin_publication_date", value:"2011/11/11");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"Ubuntu Security Notice (C) 2011-2019 Canonical, Inc. / NASL script (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Ubuntu Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(10\.04|10\.10|11\.04|11\.10)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 10.04 / 10.10 / 11.04 / 11.10", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);
flag = 0;
if (ubuntu_check(osver:"10.04", pkgname:"libclamav6", pkgver:"0.96.5+dfsg-1ubuntu1.10.04.3")) flag++;
if (ubuntu_check(osver:"10.10", pkgname:"libclamav6", pkgver:"0.96.5+dfsg-1ubuntu1.10.10.3")) flag++;
if (ubuntu_check(osver:"11.04", pkgname:"libclamav6", pkgver:"0.97.3+dfsg-1ubuntu0.11.04.1")) flag++;
if (ubuntu_check(osver:"11.10", pkgname:"libclamav6", pkgver:"0.97.3+dfsg-1ubuntu0.11.10.1")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : ubuntu_report_get()
);
exit(0);
}
else
{
tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libclamav6");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | libclamav6 | p-cpe:/a:canonical:ubuntu_linux:libclamav6 |
| canonical | ubuntu_linux | 10.04 | cpe:/o:canonical:ubuntu_linux:10.04:-:lts |
| canonical | ubuntu_linux | 10.10 | cpe:/o:canonical:ubuntu_linux:10.10 |
| canonical | ubuntu_linux | 11.04 | cpe:/o:canonical:ubuntu_linux:11.04 |
| canonical | ubuntu_linux | 11.10 | cpe:/o:canonical:ubuntu_linux:11.10 |
Related
cve
cve
CVE-2011-3627
2011-11-17 19:55:01
nessus
nessus
openSUSE Security Update : clamav (openSUSE-SU-2011:1177-1)
2014-06-13 00:00:00
SuSE 10 Security Update : clamav (ZYPP Patch Number 7804)
2011-10-24 00:00:00
openSUSE Security Update : clamav (openSUSE-SU-2011:1177-1)
2014-06-13 00:00:00
openvas
openvas
Ubuntu Update for clamav USN-1258-1
2011-11-11 00:00:00
ClamAV < 0.97.3 Recursion Level Handling DoS Vulnerability - Windows
2011-11-22 00:00:00
Ubuntu: Security Advisory (USN-1258-1)
2011-11-11 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package clamav version 0.97.3-alt1
2011-10-20 00:00:00
Security fix for the ALT Linux 9 package clamav version 0.97.3-alt1
2011-10-20 00:00:00
Security fix for the ALT Linux 8 package clamav version 0.97.3-alt1
2011-10-20 00:00:00
prion
prion
Open redirect
2011-11-17 19:55:00
ubuntu
ubuntu
ClamAV vulnerability
2011-11-10 00:00:00
ubuntucve
ubuntucve
CVE-2011-3627
2011-10-24 00:00:00
nvd
nvd
CVE-2011-3627
2011-11-17 19:55:01
debiancve
debiancve
CVE-2011-3627
2011-11-17 19:55:01
securityvulns
securityvulns
ClamAV antivirus DoS
2011-10-26 00:00:00
cvelist
cvelist
CVE-2011-3627
2011-11-17 19:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: clamav-0.97.3-1600.fc16
2011-11-07 08:57:28
[SECURITY] Fedora 15 Update: clamav-0.97.3-1500.fc15
2011-11-07 08:56:50
[SECURITY] Fedora 14 Update: clamav-0.97.3-1400.fc14
2011-11-07 08:56:17
gentoo
gentoo
Clam AntiVirus: Multiple vulnerabilities
2011-10-24 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.024 Low
EPSS
Percentile
90.0%
Related for UBUNTU_USN-1258-1.NASL