22 matches found
CVE-2008-5050
Off-by-one error in the getunicodename function libclamav/vbaextract.c in Clam Anti-Virus ClamAV before 0.94.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow...
SuSE9 Security Update : clamav (YOU Patch Number 12293)
Various bugs such as an off-by-one buffer overflow in getunicodename , a bug in URL parsing of the 'phishing' checks, as well as minor other issues have been fixed in clamav. CVE-2008-5050 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
SuSE 10 Security Update : clamav (ZYPP Patch Number 5769)
Various bugs such as a getunicodename off-by-one buffer overflow, a bug in URL parsing of phishing checks as well as minor other issues have been fixed in clamav. CVE-2008-5050 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
SuSE9 Security Update : ClamAV (YOU Patch Number 12292)
Various bugs such as a getunicodename off-by-one buffer overflow, a bug in URL parsing of phishing checks as well as minor other issues have been fixed in ClamAV. CVE-2008-5050 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
openSUSE Security Update : clamav (clamav-305)
Various bugs such as a getunicodename off-by-one buffer overflow, a bug in URL parsing of phishing checks as well as minor other issues have been fixed in clamav. CVE-2008-5050 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...
Mandriva Linux Security Advisory : clamav (MDVSA-2008:229)
An off-by-one error was found in ClamAV versions prior to 0.94.1 that could allow remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted VBA project file CVE-2008-5050. Other bugs have also been corrected in 0.94.1 which is being provided with this update...
Mandriva Update for clamav MDVSA-2008:229 (clamav)
Check for the Version of clamav OpenVAS Vulnerability Test Mandriva Update for clamav MDVSA-2008:229 clamav Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Fedora Update for clamav FEDORA-2008-9644
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for clamav FEDORA-2008-9651
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Gentoo Security Advisory GLSA 200812-21 (clamav)
The remote host is missing updates announced in advisory GLSA 200812-21. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200812-21 (clamav)
The remote host is missing updates announced in advisory GLSA 200812-21. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 1680-1] New clamav packages fix potential code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1680-1 [email protected] http://www.debian.org/security/ Florian Weimer December 04, 2008 http://www.debian.org/security/faq -...
Debian DSA-1680-1 : clamav - buffer overflow, stack consumption
Moritz Jodeit discovered that ClamAV, an anti-virus solution, suffers from an off-by-one-error in its VBA project file processing, leading to a heap-based buffer overflow and potentially arbitrary code execution CVE-2008-5050 . Ilja van Sprundel discovered that ClamAV contains a denial of service...
ClamAV < 0.94.1 Off-By-One Heap based Buffer Overflow Vulnerability
ClamAV is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:clamav:clamav";...
SuSE 10 Security Update : clamav (ZYPP Patch Number 5768)
Various bugs such as a getunicodename off-by-one buffer overflow, a bug in URL parsing of phishing checks as well as minor other issues have been fixed in clamav. CVE-2008-5050 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...
openSUSE 10 Security Update : clamav (clamav-5773)
Various bugs such as a getunicodename off-by-one buffer overflow, a bug in URL parsing of phishing checks as well as minor other issues have been fixed in clamav. CVE-2008-5050 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...
FreeBSD Ports: clamav
The remote host is missing an update to the system as announced in the referenced advisory. VID 24b64fb0-af1d-11dd-8a16-001b1116b350 OpenVAS Vulnerability Test $ Description: Auto generated from VID 24b64fb0-af1d-11dd-8a16-001b1116b350 Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: clamav
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Fedora 8 : clamav-0.92.1-4.fc8 (2008-9651)
Security fixes from upstream 0.94 and 0.94.1: CVE-2008-3912 461461: Multiple out-of-memory NULL pointer dereferences CVE-2008-3913 461461: Fix memory leak in the error code path in freshclam CVE-2008-3914 461461: File descriptor leak on the error code path CVE-2008-5050 470783: getunicodename...
CVE-2008-5050
Off-by-one error in the getunicodename function libclamav/vbaextract.c in Clam Anti-Virus ClamAV before 0.94.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow...