Vulners
Lucene search
3 matches found
ClamAV petite.c无效内存访问绝服务漏洞
BUGTRAQ ID: 29750 CVECAN ID: CVE-2008-2713 Clam AntiVirus是Unix的GPL杀毒工具包,很多邮件网关产品都在使用。 ClamAV的libclamav/petite.c文件中存在拒绝服务漏洞,如果用户受骗打开了特制的Petite加壳可执行程序的话,就会在以下代码段的memcpy中触发越界读取,导致拒绝服务的情况: cliwriteint32curpe+0x24, 0xffffffff; memcpypefile+rawbase, buffer+sectionsi.raw, sectionsi.rsz;...
5CVSS0.5AI score0.04708EPSS
Exploits2
Out-of-bounds
libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file that triggers an out-of-bounds read...
5CVSS6.2AI score0.04708EPSS
Exploits2References31Affected Software1
DEBIAN-CVE-2005-3587
Improper boundary checks in petite.c in Clam AntiVirus ClamAV before 0.87.1 allows attackers to perform unknown attacks via unknown vectors...
10CVSS6.6AI score0.022EPSS
Exploits0References1
20