Lucene search

K
ubuntucveUbuntu.comUB:CVE-2008-1836
HistoryApr 16, 2008 - 12:00 a.m.

CVE-2008-1836

2008-04-1600:00:00
ubuntu.com
ubuntu.com
13

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.056 Low

EPSS

Percentile

93.3%

The rfc2231 function in message.c in libclamav in ClamAV before 0.93 allows
remote attackers to cause a denial of service (crash) via a crafted message
that produces a string that is not null terminated, which triggers a buffer
over-read.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchclamav< 0.94.dfsg.2-1ubuntu0.3~dapper2UNKNOWN
ubuntu8.04noarchclamav< 0.94.dfsg.2-1ubuntu0.3~hardy4UNKNOWN

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.056 Low

EPSS

Percentile

93.3%