Gentoo Security Advisory GLSA 201209-08 (squidclamav)

The remote host is missing updates announced in advisory GLSA 201209-08. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

SquidClamav URL Parsing DoS Vulnerability

SquidClamav is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:darold:squidclamav...

FreeBSD Ports: squidclamav

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2012-3501

CVE-2012-3501 affects SquidClamav (SquidClamav 5.x before 5.8 and 6.x before 6.7) where the function squidclamav_check_preview_handler passes an unescaped URL to a system command. This can allow a remote attacker to trigger a denial of service (daemon crash) by sending a URL containing certain ch...