Lucene search
RootSSV:3168HistoryApr 15, 2008 - 12:00 a.m.
ClamAV libclamav/pe.c UPACK文件处理堆溢出漏洞
2008-04-1500:00:00
Root
www.seebug.org
26
0.46 Medium
EPSS
Percentile
97.1%
BUGTRAQ ID: 28756
CVE(CAN) ID: CVE-2008-1100
Clam AntiVirus是Unix的GPL杀毒工具包,很多邮件网关产品都在使用。
ClamAV的libclamav/pe.c文件中的cli_scanpe()函数在处理特制Upack可执行程序时存在堆溢出漏洞,如果杀毒软件检测到了恶意的Upack文件时就会触发这个溢出,导致执行任意指令。
ClamAV ClamAV 0.92.1
ClamAV ClamAV 0.92
ClamAV
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
<a href=“http://www.clamav.net/” target=“_blank”>http://www.clamav.net/</a>
Related
ubuntucve
ubuntucve
CVE-2008-1100
2008-04-14 00:00:00
cve
cve
CVE-2008-1100
2008-04-14 16:05:00
debiancve
debiancve
CVE-2008-1100
2008-04-14 16:05:00
prion
prion
Buffer overflow
2008-04-14 16:05:00
nessus
nessus
FreeBSD : clamav -- Multiple Vulnerabilities (589d8053-0b03-11dd-b4ef-00e07dc4ec84)
2008-04-18 00:00:00
Debian DSA-1549-1 : clamav - buffer overflows
2008-04-22 00:00:00
Fedora 9 : clamav-0.93-1.fc9 (2008-3900)
2008-05-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package clamav version 0.93-alt1
2008-04-15 00:00:00
Security fix for the ALT Linux 9 package clamav version 0.93-alt1
2008-04-15 00:00:00
Security fix for the ALT Linux 8 package clamav version 0.93-alt1
2008-04-15 00:00:00
openvas
openvas
FreeBSD Ports: clamav
2008-09-04 00:00:00
Debian Security Advisory DSA 1549-1 (clamav)
2008-04-21 00:00:00
FreeBSD Ports: clamav
2008-09-04 00:00:00
debian
debian
[SECURITY] [DSA 1549-1] New clamav packages fix several vulnerabilities
2008-04-17 20:52:50
freebsd
freebsd
clamav -- Multiple Vulnerabilities
2008-04-15 00:00:00
cert
cert
ClamAV upack heap buffer overflow vulnerability
2008-04-21 00:00:00
osv
osv
clamav
2008-04-17 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: clamav-0.93-1.fc9
2008-05-14 22:09:25
[SECURITY] Fedora 8 Update: clamav-0.92.1-2.fc8
2008-04-29 21:01:37
[SECURITY] Fedora 7 Update: clamav-0.92.1-2.fc7
2008-04-29 20:56:27
gentoo
gentoo
ClamAV: Multiple vulnerabilities
2008-05-20 00:00:00
suse
suse
remote code execution in clamav
2008-04-24 17:12:58