SUSE CVE-2008-5050

Off-by-one error in the getunicodename function libclamav/vbaextract.c in Clam Anti-Virus ClamAV before 0.94.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow...

October 4, 2022, update for Office 2013 (KB5002274)

October 4, 2022, update for Office 2013 KB5002274 This article describes update 5002274 for Microsoft Office 2013 that was released on October 4, 2022. This update also applies to Office Home and Student 2013 RT.Be aware that the update in the Microsoft Download Center applies to the Microsoft...

August 2, 2022, update for Office 2016 (KB5002248)

August 2, 2022, update for Office 2016 KB5002248 This article describes update 5002248 for Microsoft Office 2016 that was released on August 2, 2022.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply to...

Description of the security update for Office 2013: July 12, 2022 (KB5002121)

Description of the security update for Office 2013: July 12, 2022 KB5002121 Summary This security update resolves a Microsoft Office security feature bypass vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2022-33632. Note: To apply this...

CVE-2008-5050

Off-by-one error in the getunicodename function libclamav/vbaextract.c in Clam Anti-Virus ClamAV before 0.94.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow...

Microsoft Office Trust Access to VBA Project Model Object Enabled

A Microsoft Office application installed on the remote host has trust access to VBA project model object enabled. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the Microsoft Security Updates API. The text itself is copyright C Microsof...

Microsoft Warns of Sneaky New Macro Trick

Microsoft is warning of an innovative new technique attackers are using to sneak macro malware past virus detection engines and add to the already huge uptick in reported macro attacks. According to researchers at Microsoft’s Malware Protection Center, they stumbled upon the macro technique in a...

Mandriva Linux Security Advisory : clamav (MDVSA-2008:229)

An off-by-one error was found in ClamAV versions prior to 0.94.1 that could allow remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted VBA project file CVE-2008-5050. Other bugs have also been corrected in 0.94.1 which is being provided with this update...

Mandriva Update for clamav MDVSA-2008:229 (clamav)

Check for the Version of clamav OpenVAS Vulnerability Test Mandriva Update for clamav MDVSA-2008:229 clamav Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

Ubuntu: Security Advisory (USN-672-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ClamAV: Multiple vulnerabilities

Background Clam AntiVirus is a free anti-virus toolkit for UNIX, designed especially for e-mail scanning on mail gateways. Description Moritz Jodeit reported an off-by-one error within the getunicodename function in libclamav/vbaextract.c when processing VBA project files CVE-2008-5050. Ilja van...

USN-672-1: ClamAV vulnerability

Moritz Jodeit discovered that ClamAV did not correctly handle certain strings when examining a VBA project. If a remote attacker tricked ClamAV into processing a malicious VBA file, ClamAV would crash, leading to a denial of service...

DEBIAN-CVE-2008-5050

Off-by-one error in the getunicodename function libclamav/vbaextract.c in Clam Anti-Virus ClamAV before 0.94.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow...

CVE-2008-5050

Off-by-one error in the getunicodename function libclamav/vbaextract.c in Clam Anti-Virus ClamAV before 0.94.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow...

Heap overflow

Off-by-one error in the getunicodename function libclamav/vbaextract.c in Clam Anti-Virus ClamAV before 0.94.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow...

CVE-2008-5050

Off-by-one error in the getunicodename function libclamav/vbaextract.c in Clam Anti-Virus ClamAV before 0.94.1 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow...

ClamAV get_unicode_name()单字节堆溢出漏洞

BUGTRAQ ID: 32207 Clam AntiVirus是Unix的GPL杀毒工具包，很多邮件网关产品都在使用。 ClamAV中负责解析VBA项目文件的代码中存在单字节堆溢出漏洞，如果用户发送了带有恶意附件的邮件的话，就可能导致以clamd进程的权限执行任意指令。 具体来讲，向libclamav/vbaextract.c中的getunicodename函数传送了特定的name缓冲区就可以触发这个溢出： 101 static char 102 getunicodenameconst char name, int size, int bigendian 103 104 int i,...

FreeBSD : clamav -- off-by-one heap overflow in VBA project parser (24b64fb0-af1d-11dd-8a16-001b1116b350)

Advisory from Moritz Jodeit, November 8th, 2008 : ClamAV contains an off-by-one heap overflow vulnerability in the code responsible for parsing VBA project files. Successful exploitation could allow an attacker to execute arbitrary code with the privileges of the clamd' process by sending an emai...

ClamAV < 0.94.1 get_unicode_name() Function Off-by-One Buffer Overflow (deprecated)

Binary data 4744.prm...

ClamAV < 0.94.1 get_unicode_name() Off-by-One Buffer Overflow

According to its version, the clamd antivirus daemon on the remote host is earlier than 0.94.1. Such versions have an off-by-one heap overflow vulnerability in the code responsible for parsing VBA project files, specifically in the 'getunicodename' function of 'libclamav/vbaextract.c', when a...