4 matches found
CVE-2021-1386 affecting package clamav 0.103.0-1
CVE-2021-1386 affecting package clamav 0.103.0-1. An upgraded version of the package is available that resolves this issue...
CVE-2021-1386
A vulnerability in the dynamic link library DLL loading mechanism in Cisco Advanced Malware Protection AMP for Endpoints Windows Connector, ClamAV for Windows, and Immunet could allow an authenticated, local attacker to perform a DLL hijacking attack on an affected Windows system. To exploit this...
CVE-2021-1386
CVE-2021-1386 describes a DLL hijacking vulnerability in Cisco AMP for Endpoints Windows Connector, ClamAV for Windows, and Immunet. The issue arises from insufficient validation of directory search paths at run time, enabling an authenticated, local attacker to place a malicious DLL and execute ...
Vulnerabilities fixed in ClamAV
Vulnerabilities have been fixed in ClamAV. A malicious party could vulnerabilities potentially exploit them to cause a denial-of-service cause or execute arbitrary code with the permissions with which the service is running. By exploiting the vulnerability with CVE attribute CVE-2021-1386, a...