2 matches found
CVE-2007-6595
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on 1 temporary files used by the cligentempfd function in libclamav/others.c or on 2 .ascii files used by sigtool, when utf16-decode is enabled...
CVE-2006-1630
The CVE-2006-1630 issue affects ClamAV prior to version 0.88.1. The vulnerability is an invalid memory access within the cli_bitset_set() function in libclamav/others.c, which can allow a remote attacker to trigger a denial of service. A fix is available in 0.88.1 and later releases; upgrading to...