Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2008 E-Soft Inc.OPENVAS:136141256231061053
HistorySep 24, 2008 - 12:00 a.m.

Gentoo Security Advisory GLSA 200805-19 (clamav)

2008-09-2400:00:00
Copyright (C) 2008 E-Soft Inc.
plugins.openvas.org
2

6.7 Medium

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.46 Medium

EPSS

Percentile

97.4%

JSON

The remote host is missing updates announced in
advisory GLSA 200805-19.

# SPDX-FileCopyrightText: 2008 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.61053");
  script_version("2023-07-14T16:09:26+0000");
  script_tag(name:"last_modification", value:"2023-07-14 16:09:26 +0000 (Fri, 14 Jul 2023)");
  script_tag(name:"creation_date", value:"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)");
  script_cve_id("CVE-2008-0314", "CVE-2008-1100", "CVE-2008-1387", "CVE-2008-1833", "CVE-2008-1835", "CVE-2008-1836", "CVE-2008-1837");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_name("Gentoo Security Advisory GLSA 200805-19 (clamav)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2008 E-Soft Inc.");
  script_family("Gentoo Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/gentoo", "ssh/login/pkg");
  script_tag(name:"insight", value:"Multiple vulnerabilities in ClamAV may result in the remote execution of
arbitrary code.");
  script_tag(name:"solution", value:"All ClamAV users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose '>=app-antivirus/clamav-0.93'");

  script_xref(name:"URL", value:"http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200805-19");
  script_xref(name:"URL", value:"http://bugs.gentoo.org/show_bug.cgi?id=213762");
  script_tag(name:"summary", value:"The remote host is missing updates announced in
advisory GLSA 200805-19.");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("pkg-lib-gentoo.inc");
include("revisions-lib.inc");

res = "";
report = "";
report = "";
if ((res = ispkgvuln(pkg:"app-antivirus/clamav", unaffected: make_list("ge 0.93"), vulnerable: make_list("lt 0.93"))) != NULL) {
    report += res;
}

if (report != "") {
    security_message(data:report);
} else if (__pkg_match) {
    exit(99);
}

Related

nessus 11
openvas 24
gentoo 1
fedora 5
suse 1
osv 1
debian 1
cert 1
altlinux 3
freebsd 1
seebug 3
prion 7
securityvulns 4
ubuntucve 7
debiancve 7
cve 7
kitploit 1
nessus
nessus
GLSA-200805-19 : ClamAV: Multiple vulnerabilities
2008-05-22 00:00:00
openSUSE 10 Security Update : clamav (clamav-5199)
2008-04-25 00:00:00
SuSE 10 Security Update : clamav (ZYPP Patch Number 5200)
2008-04-25 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200805-19 (clamav)
2008-09-24 00:00:00
SLES9: Security update for clamav
2009-10-10 00:00:00
SuSE Update for clamav SUSE-SA:2008:024
2009-01-23 00:00:00
gentoo
gentoo
ClamAV: Multiple vulnerabilities
2008-05-20 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: clamav-0.93-1.fc9
2008-05-14 22:09:25
[SECURITY] Fedora 8 Update: clamav-0.92.1-2.fc8
2008-04-29 21:01:37
[SECURITY] Fedora 7 Update: clamav-0.92.1-2.fc7
2008-04-29 20:56:27
suse
suse
remote code execution in clamav
2008-04-24 17:12:58
osv
osv
clamav
2008-04-17 00:00:00
debian
debian
[SECURITY] [DSA 1549-1] New clamav packages fix several vulnerabilities
2008-04-17 20:52:50
cert
cert
ClamAV upack heap buffer overflow vulnerability
2008-04-21 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package clamav version 0.93-alt1
2008-04-15 00:00:00
Security fix for the ALT Linux 9 package clamav version 0.93-alt1
2008-04-15 00:00:00
Security fix for the ALT Linux 8 package clamav version 0.93-alt1
2008-04-15 00:00:00
freebsd
freebsd
clamav -- Multiple Vulnerabilities
2008-04-15 00:00:00
seebug
seebug
ClamAV libclamav库PeSpin堆溢出漏洞
2008-04-17 00:00:00
ClamAV libclamav/pe.c UPACK文件处理堆溢出漏洞
2008-04-15 00:00:00
ClamAV ARJ文件解析拒绝服务漏洞
2008-04-17 00:00:00
prion
prion
Heap overflow
2008-04-16 15:05:00
Authentication flaw
2008-04-16 16:05:00
Code injection
2008-04-16 16:05:00
securityvulns
securityvulns
[Full-disclosure] iDefense Security Advisory 04.14.08: ClamAV libclamav PeSpin Heap Overflow Vulnerability
2008-04-16 00:00:00
[Full-disclosure] clamav: Endless loop / hang with crafter arj, CVE-2008-1387
2008-04-15 00:00:00
ClamAV antivirus multiple security vulnerabilities
2008-04-16 00:00:00
ubuntucve
ubuntucve
CVE-2008-0314
2008-04-16 00:00:00
CVE-2008-1837
2008-04-16 00:00:00
CVE-2008-1835
2008-04-16 00:00:00
debiancve
debiancve
CVE-2008-0314
2008-04-16 15:05:00
CVE-2008-1837
2008-04-16 16:05:00
CVE-2008-1835
2008-04-16 16:05:00
cve
cve
CVE-2008-0314
2008-04-16 15:05:00
CVE-2008-1837
2008-04-16 16:05:00
CVE-2008-1836
2008-04-16 16:05:00
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00

6.7 Medium

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.46 Medium

EPSS

Percentile

97.4%

JSON
Related for OPENVAS:136141256231061053
nessus11openvas24gentoo1fedora5suse1osv1debian1cert1altlinux3freebsd1seebug3prion7securityvulns4ubuntucve7debiancve7cve7kitploit1