415 matches found
Code injection
ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted mew packer executable...
CVE-2016-1371
ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted mew packer executable...
CVE-2016-1371
ClamAV before 0.99.2 is affected by CVE-2016-1371 and CVE-2016-1372 (and related issues) due to parsing crafted mew packer and 7z files, enabling remote DoS or application crash. Affected component is libclamav/clamav daemons prior to 0.99.2; impact is partial availability denial of service. Debi...
iSpy Keylogger Targets Passwords, Skype, Webcams
Researchers are monitoring sales and infection rates of a new keylogger being sold on the dark web for $25 to $35. Along with capturing keystrokes, iSpy grabs passwords stored in web browsers, records Skype chats, takes webcam screenshots and steals the license keys of software such as Adobe...
UDPack - An Extensible Generic UDP Packet Obfuscator
UDPack is an extensible generic UDP packet obfuscator. The purpose of this application is to sit in the path of a UDP data stream, and obfuscate, deobfuscate or otherwise modify the packets. Python 3.4 or above is required, since this script uses the asyncio library. Currently there are no other...
CVE-2016-1371
ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted mew packer executable...
UBUNTU-CVE-2016-1371
ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted mew packer executable...
Comodo - PackMan Unpacker Insufficient Parameter Validation
Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=764 Packman is an obscure opensource executable packer that Comodo Antivirus attempts to unpack during scanning. The code is available online here:...
Comodo - PackMan Unpacker Insufficient Parameter Validation
Comodo - PackMan Unpacker Insufficient Parameter Validation Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=764 Packman is an obscure opensource executable packer that Comodo Antivirus attempts to unpack during scanning. The code is available online here:...
PEframe - Tool to perform static analysis on Portable Executable malware
PEframe is a open source tool to perform static analysis on Portable Executable malware. Usage $ peframe malware.exe $ peframe --option malware.exe Options --json Output in json --import Imported function and dll --export Exported function and dll --dir-import Import directory --dir-export Export...
Mandriva Linux Security Advisory : clamav (MDVSA-2015:166)
Updated clamav packages fix security vulnerabilities : ClamAV 0.98.6 is a maintenance release to fix some bugs, some of them being security bugs : Certain JavaScript files causes ClamAV to segfault when scanned with the -a list archived files CVE-2013-6497. A heap buffer overflow was reported in...
Medium: clamav
Issue Overview: ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted upack packer file, related to a "heap out of bounds condition." Affected Packages: clamav Issue Correction: Run yum update clamav or yum update --advisory ALAS-2015-486 to update your system. New...
SuSE 11.3 Security Update : clamav (SAT Patch Number 10283)
clamav was updated to version 0.98.6 to fix four security issues. These security issues have been fixed : - ClamAV allowed remote attackers to have unspecified impact via a crafted upx packer file, related to a heap out of bounds condition. bnc916214. CVE-2015-1462 - ClamAV allowed remote attacke...
Mandriva Linux Security Advisory : clamav (MDVSA-2015:042)
Updated clamav packages fix security vulnerabilities : ClamAV 0.98.6 is a maintenance release to fix some bugs, some of them being security bugs : Fix a heap out of bounds condition with crafted Yoda's crypter files. This issue was discovered by Felix Groebert of the Google Security Team. Fix a...
Updated clamav packages fix security vulnerabilities
ClamAV 0.98.6 is a maintenance release to fix some bugs, some of them being security bugs: Fix a heap out of bounds condition with crafted Yoda's crypter files. This issue was discovered by Felix Groebert of the Google Security Team. Fix a heap out of bounds condition with crafted mew packer file...
MGASA-2015-0056 Updated clamav packages fix security vulnerabilities
ClamAV 0.98.6 is a maintenance release to fix some bugs, some of them being security bugs: Fix a heap out of bounds condition with crafted Yoda's crypter files. This issue was discovered by Felix Groebert of the Google Security Team. Fix a heap out of bounds condition with crafted mew packer file...
clamav: arbitrary code execution
Sebastian Andrzej Siewior discovered that ClamAV incorrectly handled certain upack packer files. An attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service, or possibly execute arbitrary code...
ClamAV heap buffer overflow vulnerability (CNVD-2015-00910)
ClamAV Clam AntiVirus is a free and open source antivirus program developed by the ClamAV team. The software is used to detect Trojans, viruses, malware and other malicious threats. A heap-based buffer overflow vulnerability exists in versions of ClamAV prior to 0.98.6, which stems from the progr...
ClamAV heap buffer overflow vulnerability (CNVD-2015-00911)
ClamAV Clam AntiVirus is a free and open source antivirus program developed by the ClamAV team. The software is used to detect Trojans, viruses, malware and other malicious threats. A heap buffer overflow vulnerability exists in versions of ClamAV prior to 0.98.6, which stems from the program...
ClamAV Denial of Service Vulnerability
ClamAV Clam AntiVirus is a free and open source antivirus program developed by the ClamAV team. The software is used to detect Trojans, viruses, malware and other malicious threats. A security vulnerability exists in versions of ClamAV prior to 0.98.6. The vulnerability can be exploited by a remo...