Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-824-1
HistorySep 29, 2005 - 12:00 a.m.

clamav - infinite loop, buffer overflow

2005-09-2900:00:00
Google
osv.dev
5

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

Two vulnerabilities have been discovered in Clam AntiVirus, the
antivirus scanner for Unix, designed for integration with mail servers
to perform attachment scanning. The following problems were
identified:

  • CAN-2005-2919
    A potentially infinite loop could lead to a denial of service.
  • CAN-2005-2920
    A buffer overflow could lead to a denial of service.

The old stable distribution (woody) does not contain ClamAV packages.

For the stable distribution (sarge) these problems have been fixed in
version 0.84-2.sarge.4.

For the unstable distribution (sid) these problems have been fixed in
version 0.87-1.

We recommend that you upgrade your clamav package.

Related

securityvulns 1
openvas 8
nessus 5
cert 1
debian 2
suse 1
gentoo 1
freebsd 1
ubuntucve 2
cve 2
debiancve 2
checkpoint_advisories 2
securityvulns
securityvulns
[ GLSA 200509-13 ] Clam AntiVirus: Multiple vulnerabilities
2005-09-21 00:00:00
openvas
openvas
FreeBSD Ports: clamav
2008-09-04 00:00:00
FreeBSD Ports: clamav
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200509-13 (clamav)
2008-09-24 00:00:00
nessus
nessus
Debian DSA-824-1 : clamav - infinite loop, buffer overflow
2005-10-05 00:00:00
GLSA-200509-13 : Clam AntiVirus: Multiple vulnerabilities
2005-10-05 00:00:00
SUSE-SA:2005:055: clamav
2005-10-05 00:00:00
cert
cert
Clam AntiVirus contains a buffer overflow vulnerability
2005-09-27 00:00:00
debian
debian
[SECURITY] [DSA 824-1] New ClamAV packages fix denial of service
2005-09-29 11:59:49
[SECURITY] [DSA 824-1] New ClamAV packages fix denial of service
2005-09-29 11:59:49
suse
suse
remote code execution in clamav
2005-09-26 11:00:44
gentoo
gentoo
Clam AntiVirus: Multiple vulnerabilities
2005-09-19 00:00:00
freebsd
freebsd
clamav -- arbitrary code execution and DoS vulnerabilities
2005-09-16 00:00:00
ubuntucve
ubuntucve
CVE-2005-2919
2005-09-20 00:00:00
CVE-2005-2920
2005-09-20 00:00:00
cve
cve
CVE-2005-2919
2005-09-20 23:03:00
CVE-2005-2920
2005-09-20 23:03:00
debiancve
debiancve
CVE-2005-2919
2005-09-20 23:03:00
CVE-2005-2920
2005-09-20 23:03:00
checkpoint_advisories
checkpoint_advisories
ClamAV AntiVirus UPX Compressed PE Executable Files Buffer Overflow (CVE-2005-2920)
2012-04-16 00:00:00
UPX Compressed PE Executable Files (CVE-2005-2920)
2010-03-14 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON
Related for OSV:DSA-824-1
securityvulns1openvas8nessus5cert1debian2suse1gentoo1freebsd1ubuntucve2cve2debiancve2checkpoint_advisories2