64 matches found
EUVD-2006-2482
Malware in sbrugna...
EUVD-2004-1025
Malware in sbrugna...
EUVD-2005-4589
Malware in sbrugna...
EUVD-2005-3061
Malware in sbrugna...
EUVD-2005-2903
Malware in sbrugna...
EUVD-2005-0351
Malware in sbrugna...
EUVD-2006-0819
Malware in sbrugna...
EUVD-2007-5029
Malware in sbrugna...
EUVD-2008-1394
Malware in sbrugna...
SUSE CVE-2008-1387
ClamAV before 0.93 allows remote attackers to cause a denial of service CPU consumption via a crafted ARJ archive, as demonstrated by the PROTOS GENOME test suite for Archive Formats...
SUSE CVE-2015-0557
Open-source ARJ archiver 3.10.22 does not properly remove leading slashes from paths, which allows remote attackers to conduct absolute path traversal attacks and write to arbitrary files via multiple leading slashes in a path in an ARJ archive...
Important: clamav
Issue Overview: Fixed a vulnerability in the ARJ archive-parsing module in ClamAV 0.102.3 that could cause a denial-of-service DoS condition. Improper bounds checking resulted in an out-of-bounds read that could cause a crash. The previous fix for this CVE in version 0.102.3 was incomplete. This...
Amazon Linux AMI : clamav (ALAS-2020-1433)
The version of clamav installed on the remote host is prior to 0.102.4-1.44. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2020-1433 advisory. Fixed a vulnerability in the ARJ archive-parsing module in ClamAV 0.102.3 that could cause a denial-of- service DoS...
clamav -- multiple vulnerabilities
Micah Snyder reports: CVE-2020-3350 Fixed a vulnerability a malicious user could exploit to replace a scan target's directory with a symlink to another path to trick clamscan, clamdscan, or clamonacc into removing or moving a different file such as a critical system file. The issue would affect...
Fedora 31 : clamav (2020-b0acd7b66e)
ClamAV 0.102.3 is a bug patch release to address the following issues. - CVE-2020-3327: Fix a vulnerability in the ARJ archive parsing module in ClamAV 0.102.2 that could cause a Denial-of-Service DoS condition. Improper bounds checking of an unsigned variable results in an out-of-bounds read whi...
Clam AntiVirus Input Validation Error Vulnerability (CNVD-2020-41184)
Clam AntiVirus is an open source antivirus engine from the ClamAV team for detecting Trojans, viruses, malware and other malicious threats. An input validation error vulnerability exists in the ARJ archive parsing module in Clam AntiVirus version 0.102.2. A remote attacker can exploit this...
CVE-2020-3327
A vulnerability in the ARJ archive parsing module in Clam AntiVirus ClamAV Software versions 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a heap buffer overflow read. An attacker could exploit thi...
Heap overflow
A vulnerability in the ARJ archive parsing module in Clam AntiVirus ClamAV Software versions 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a heap buffer overflow read. An attacker could exploit thi...
CVE-2020-3327 ClamAV ARJ Archive Parsing Denial of Service Vulnerability
A vulnerability in the ARJ archive parsing module in Clam AntiVirus ClamAV Software versions 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a heap buffer overflow read. An attacker could exploit thi...
CVE-2020-3327 ClamAV ARJ Archive Parsing Denial of Service Vulnerability
A vulnerability in the ARJ archive parsing module in Clam AntiVirus ClamAV Software versions 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a heap buffer overflow read. An attacker could exploit thi...