USN-7229-1 clamav vulnerability

It was discovered that ClamAV incorrectly handled decrypting OLE2 content. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service...

The vulnerability of the OLE2 form file analysis component in the ClamAV antivirus program allows a hacker to trigger a service failure.

The vulnerability of the OLE2 file analysis component in the ClamAV antivirus program lies in the ability to read data beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to cause a service failure by sending a specially crafted OLE2 file...

DEBIAN-CVE-2024-20290

A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an incorrect check for end-of-string values during scanning, which may result in a heap buffer...

PT-2024-1550 · Clamav +1 · Clamav +1

Name of the Vulnerable Software and Affected Versions: ClamAV affected versions not specified Description: A vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability ...

DEBIAN-CVE-2019-1788

A vulnerability in the Object Linking & Embedding OLE2 file scanning functionality of Clam AntiVirus ClamAV Software versions 0.101.1 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of prope...