Lucene search

K

PRIOn knowledge basePRION:CVE-2010-1639

HistoryMay 26, 2010 - 6:30 p.m.

Design/Logic Flaw

2010-05-2618:30:00

PRIOn knowledge base

www.prio-n.com

1

6.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.018 Low

EPSS

Percentile

87.8%

The cli_pdf function in libclamav/pdf.c in ClamAV before 0.96.1 allows remote attackers to cause a denial of service (crash) via a malformed PDF file, related to an inconsistency in the calculated stream length and the real stream length.

CPENameOperatorVersion
clamaveq0.95.2
clamaveq0.86.2
clamaveq0.88.5
clamaveq0.02
clamaveq0.92
clamaveq0.95 rc2
clamaveq0.15
clamaveq0.90 rc2
clamaveq0.75.1
clamaveq0.65

Rows per page:

1-10 of 941

References

git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commitdiff%3Bh=f0eb394501ec21b9fe67f36cbf5db788711d4236

lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html

secunia.com/advisories/39895

secunia.com/advisories/43752

www.mandriva.com/security/advisories?name=MDVSA-2010:110

www.securityfocus.com/bid/40317

www.securitytracker.com/id?1024017

www.vupen.com/english/advisories/2010/1214

exchange.xforce.ibmcloud.com/vulnerabilities/58824

lists.fedoraproject.org/pipermail/package-announce/2011-March/055771.html

lists.fedoraproject.org/pipermail/package-announce/2011-March/055777.html

wwws.clamav.net/bugzilla/show_bug.cgi?id=2016

6.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.018 Low

EPSS

Percentile

87.8%

Related for PRION:CVE-2010-1639

nessus14 debiancve1 ubuntucve1 openvas17 cve1 fedora4 ubuntu1 securityvulns2 gentoo1