10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
Several vulnerabilities have been discovered in the Clam anti-virus
toolkit, which may lead to the execution of arbitrary code or local denial
of service. The Common Vulnerabilities and Exposures project identifies
the following problems:
The version of clamav in the old stable distribution (sarge) is no
longer supported with security updates.
For the stable distribution (etch), these problems have been fixed in
version 0.90.1dfsg-3etch10. In addition to these fixes, this update
also incorporates changes from the upcoming point release of the
stable distribution (non-free RAR handling code was removed).
We recommend that you upgrade your clamav packages.