Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:3439
HistoryJun 20, 2008 - 12:00 a.m.

ClamAV petite.c无效内存访问绝服务漏洞

2008-06-2000:00:00
Root
www.seebug.org
10

0.167 Low

EPSS

Percentile

95.5%

JSON

BUGTRAQ ID: 29750
CVE(CAN) ID: CVE-2008-2713

Clam AntiVirus是Unix的GPL杀毒工具包,很多邮件网关产品都在使用。

ClamAV的libclamav/petite.c文件中存在拒绝服务漏洞,如果用户受骗打开了特制的Petite加壳可执行程序的话,就会在以下代码段的memcpy()中触发越界读取,导致拒绝服务的情况:

  cli_writeint32(curpe+0x24, 0xffffffff);
  memcpy(pefile+rawbase, buffer+sections[i].raw, sections[i].rsz);
  rawbase+=PESALIGN(sections[i].rsz, 0x200);
  curpe+=40;
  datasize+=PESALIGN(sections[i].vsz, 0x1000);

ClamAV < 0.93.1
ClamAV

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

<a href=“http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&amp;path=/branches/0.93/libclamav/petite.c&amp;rev=3886” target=“_blank”>http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&amp;path=/branches/0.93/libclamav/petite.c&amp;rev=3886</a>

Related

openvas 32
nessus 16
debian 4
securityvulns 2
cve 2
fedora 5
debiancve 2
prion 2
ubuntucve 2
osv 1
gentoo 1
openvas
openvas
Debian Security Advisory DSA 1616-1 (clamav)
2008-08-15 00:00:00
Debian Security Advisory DSA 1616-2 (clamav)
2008-08-15 00:00:00
Fedora Update for clamav FEDORA-2008-6338
2009-02-17 00:00:00
nessus
nessus
openSUSE Security Update : clamav (clamav-85)
2009-07-21 00:00:00
openSUSE Security Update : clamav (clamav-44)
2009-07-21 00:00:00
openSUSE 10 Security Update : clamav (clamav-5414)
2008-07-15 00:00:00
debian
debian
[SECURITY] [DSA 1616-1] new clamav packages fix denial of service
2008-07-24 07:36:24
[SECURITY] [DSA 1616-2] New clamav packages fix denial of service
2008-07-26 04:49:24
[SECURITY] [DSA 1616-2] New clamav packages fix denial of service
2008-07-26 04:49:24
securityvulns
securityvulns
ClamAV antivirus DoS
2008-06-25 00:00:00
[ MDVSA-2008:122 ] - Updated clamav packages fix vulnerability
2008-06-25 00:00:00
cve
cve
CVE-2008-2713
2008-06-16 21:41:00
CVE-2008-3215
2008-07-18 16:41:00
fedora
fedora
[SECURITY] Fedora 9 Update: clamav-0.93.3-1.fc9
2008-07-17 14:15:45
[SECURITY] Fedora 9 Update: clamav-0.93.1-1.fc9
2008-06-20 19:07:25
[SECURITY] Fedora 8 Update: clamav-0.92.1-3.fc8
2008-07-17 14:17:14
debiancve
debiancve
CVE-2008-2713
2008-06-16 21:41:00
CVE-2008-3215
2008-07-18 16:41:00
prion
prion
Out-of-bounds
2008-06-16 21:41:00
Out-of-bounds
2008-07-18 16:41:00
ubuntucve
ubuntucve
CVE-2008-2713
2008-06-16 00:00:00
CVE-2008-3215
2008-07-18 00:00:00
osv
osv
clamav - denial of service
2008-07-26 00:00:00
gentoo
gentoo
ClamAV: Multiple Denials of Service
2008-08-08 00:00:00

0.167 Low

EPSS

Percentile

95.5%

JSON
Related for SSV:3439
openvas32nessus16debian4securityvulns2cve2fedora5debiancve2prion2ubuntucve2osv1gentoo1