17 matches found
K7985: ClamAV clamav-milter vulnerability - CVE-2007-4560
Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...
CVE-2007-4560
creationtimestamp| type| source ---|---|--- 2010-10-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16924 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/smtp/clamavmilterblackhole.rb 2025-02-06 03:13:38+00:00|...
ClamAV Mail Filter Extension Crafted Recipient Command Execution (CVE-2007-4560)
ClamAV AntiVirus is an open source product that provides anti-virus scanning utilities and an anti-virus library. ClamAV includes a milter mail filter for the mail transfer agents MTA such as Sendmail. A milter is a mail filter extension used for MTAs that allows third-party programs to access ma...
Mandriva Update for clamav MDKSA-2007:172 (clamav)
Check for the Version of clamav OpenVAS Vulnerability Test Mandriva Update for clamav MDKSA-2007:172 clamav Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
ClamAV Milter Blackhole-Mode Remote Code Execution
This module exploits a flaw in the Clam AntiVirus suite 'clamav-milter' Sendmail mail filter. Versions prior to v0.92.2 are vulnerable. When implemented with black hole mode enabled, it is possible to execute commands remotely due to an insecure popen call. This module requires Metasploit:...
Debian: Security Advisory (DSA-1366-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SOL7985 - ClamAV clamav-milter vulnerability - CVE-2007-4560
The FirePass controller can be configured to provide anti-virus scanning of files uploaded through Portal Access through the ClamAV open source software. Scanning is configured on the Antivirus tab of the Portal Access: Content Inspection page, through the Enable Standalone virus Scanner option...
ClamAV milter popen command injection
Added: 09/06/2007 CVE: CVE-2007-4560 BID: 25439 OSVDB: 36909 Background ClamAV is an open-source anti-virus toolkit. clamav-milter is a derivative of ClamAV for e-mail servers running Sendmail. Problem An insecure call to the popen function in clamav-milter, when running in black hole mode, allow...
ClamAV milter popen command injection
Added: 09/06/2007 CVE: CVE-2007-4560 BID: 25439 OSVDB: 36909 Background ClamAV is an open-source anti-virus toolkit. clamav-milter is a derivative of ClamAV for e-mail servers running Sendmail. Problem An insecure call to the popen function in clamav-milter, when running in black hole mode, allow...
ClamAV milter popen command injection
Added: 09/06/2007 CVE: CVE-2007-4560 BID: 25439 OSVDB: 36909 Background ClamAV is an open-source anti-virus toolkit. clamav-milter is a derivative of ClamAV for e-mail servers running Sendmail. Problem An insecure call to the popen function in clamav-milter, when running in black hole mode, allow...
Security fix for the ALT Linux 9 package clamav version 0.91.2-alt1
Sept. 3, 2007 Victor Forsyuk 0.91.2-alt1 - 0.91.2 fixes for CVE-2007-4510, CVE-2007-4560...
Security fix for the ALT Linux 10 package clamav version 0.91.2-alt1
Sept. 3, 2007 Victor Forsyuk 0.91.2-alt1 - 0.91.2 fixes for CVE-2007-4510, CVE-2007-4560...
Security fix for the ALT Linux 8 package clamav version 0.91.2-alt1
Sept. 3, 2007 Victor Forsyuk 0.91.2-alt1 - 0.91.2 fixes for CVE-2007-4510, CVE-2007-4560...
[SECURITY] [DSA 1366-1] New clamav packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1366-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff September 1st, 2007 http://www.debian.org/security/faq -...
CVE-2007-4560
CVE-2007-4560 affects clamav-milter in ClamAV before 0.91.2. When used with Sendmail in black hole mode, an attacker can craft SMTP inputs to trigger an insecure popen call and execute arbitrary commands remotely. The issue is a remote code execution vulnerability in the milter component, with re...
CVE-2007-4560
clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail."...
ClamAV Milter <= 0.92.2 Blackhole-Mode (sendmail) Code Execution
No description provided by source. $Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require...