BID:30994

ClamAV 'chmunpack.c' Invalid Memory Access Denial Of Service Vulnerability

Info

ClamAV 'chmunpack.c' Invalid Memory Access Denial Of Service Vulnerability

Bugtraq ID:	30994
Class:	Unknown
CVE:	CVE-2008-1389
Remote:	Yes
Local:	No
Published:	Sep 03 2008 12:00AM
Updated:	Apr 13 2015 09:42PM
Credit:	Hanno Bock
Vulnerable:	S.u.S.E. openSUSE 11.0 S.u.S.E. openSUSE 10.3 S.u.S.E. openSUSE 10.2 Mandriva Linux Mandrake 2008.1 x86_64 Mandriva Linux Mandrake 2008.1 Mandriva Linux Mandrake 2008.0 x86_64 Mandriva Linux Mandrake 2008.0 Mandriva Linux Mandrake 2007.1 x86_64 Mandriva Linux Mandrake 2007.1 MandrakeSoft Corporate Server 4.0 x86_64 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 MandrakeSoft Corporate Server 4.0 Kolab Kolab Groupware Server 2.2 Kolab Kolab Groupware Server 2.1 Kolab Kolab Groupware Server 2.0.4 Kolab Kolab Groupware Server 2.0.3 Kolab Kolab Groupware Server 2.0.2 Kolab Kolab Groupware Server 2.0.1 Kolab Kolab Groupware Server 2.2-rc3 Kolab Kolab Groupware Server 2.2-rc1 Kolab Kolab Groupware Server 2.2 beta3 Kolab Kolab Groupware Server 2.2 beta1 Kolab Kolab Groupware Server 2.2 -rc2 Kolab Kolab Groupware Server 2.1beta2 ifenslave ifenslave 0.88 Gentoo Linux Clam Anti-Virus ClamAV 0.93.1 Clam Anti-Virus ClamAV 0.92.1 Clam Anti-Virus ClamAV 0.91.2 Clam Anti-Virus ClamAV 0.91.1 Clam Anti-Virus ClamAV 0.90.3 Clam Anti-Virus ClamAV 0.90.2 Clam Anti-Virus ClamAV 0.90.1 + Debian Linux 4.0 sparc + Debian Linux 4.0 s/390 + Debian Linux 4.0 powerpc + Debian Linux 4.0 mipsel + Debian Linux 4.0 mips + Debian Linux 4.0 m68k + Debian Linux 4.0 ia-64 + Debian Linux 4.0 ia-32 + Debian Linux 4.0 hppa + Debian Linux 4.0 arm + Debian Linux 4.0 amd64 + Debian Linux 4.0 alpha + Debian Linux 4.0 Clam Anti-Virus ClamAV 0.90 Clam Anti-Virus ClamAV 0.88.5 Clam Anti-Virus ClamAV 0.88.4 Clam Anti-Virus ClamAV 0.88.3 Clam Anti-Virus ClamAV 0.88.2 Clam Anti-Virus ClamAV 0.88.1 Clam Anti-Virus ClamAV 0.87.1 Clam Anti-Virus ClamAV 0.87 -1 Clam Anti-Virus ClamAV 0.87 Clam Anti-Virus ClamAV 0.86.2 Clam Anti-Virus ClamAV 0.86 .1 Clam Anti-Virus ClamAV 0.86 Clam Anti-Virus ClamAV 0.85.1 Clam Anti-Virus ClamAV 0.85 Clam Anti-Virus ClamAV 0.84 rc2 Clam Anti-Virus ClamAV 0.84 rc1 Clam Anti-Virus ClamAV 0.84 + Debian Linux 3.1 sparc + Debian Linux 3.1 s/390 + Debian Linux 3.1 ppc + Debian Linux 3.1 mipsel + Debian Linux 3.1 mips + Debian Linux 3.1 m68k + Debian Linux 3.1 ia-64 + Debian Linux 3.1 ia-32 + Debian Linux 3.1 hppa + Debian Linux 3.1 arm + Debian Linux 3.1 alpha + Debian Linux 3.1 Clam Anti-Virus ClamAV 0.83 Clam Anti-Virus ClamAV 0.82 Clam Anti-Virus ClamAV 0.81 + Gentoo Linux Clam Anti-Virus ClamAV 0.80 rc4 Clam Anti-Virus ClamAV 0.80 rc3 Clam Anti-Virus ClamAV 0.80 rc2 Clam Anti-Virus ClamAV 0.80 rc1 Clam Anti-Virus ClamAV 0.80 Clam Anti-Virus ClamAV 0.75.1 Clam Anti-Virus ClamAV 0.70 Clam Anti-Virus ClamAV 0.68 -1 Clam Anti-Virus ClamAV 0.68 Clam Anti-Virus ClamAV 0.67 Clam Anti-Virus ClamAV 0.65 Clam Anti-Virus ClamAV 0.60 Clam Anti-Virus ClamAV 0.54 Clam Anti-Virus ClamAV 0.53 Clam Anti-Virus ClamAV 0.52 Clam Anti-Virus ClamAV 0.51 Clam Anti-Virus ClamAV 0.93 Clam Anti-Virus ClamAV 0.92 Clam Anti-Virus ClamAV 0.91 Clam Anti-Virus ClamAV 0.88.6 Apple Mac OS X Server 10.5.5 Apple Mac OS X Server 10.5.4 Apple Mac OS X Server 10.5.3 Apple Mac OS X Server 10.5.2 Apple Mac OS X Server 10.5.1 Apple Mac OS X Server 10.4.11 Apple Mac OS X Server 10.4.10 Apple Mac OS X Server 10.4.9 Apple Mac OS X Server 10.4.8 Apple Mac OS X Server 10.4.7 Apple Mac OS X Server 10.4.6 Apple Mac OS X Server 10.4.5 Apple Mac OS X Server 10.4.4 Apple Mac OS X Server 10.4.3 Apple Mac OS X Server 10.4.2 Apple Mac OS X Server 10.4.1 Apple Mac OS X Server 10.4 Apple Mac OS X Server 10.5 Apple Mac OS X 10.5.5 Apple Mac OS X 10.5.4 Apple Mac OS X 10.5.3 Apple Mac OS X 10.5.2 Apple Mac OS X 10.5.1 Apple Mac OS X 10.4.11 Apple Mac OS X 10.4.10 Apple Mac OS X 10.4.9 Apple Mac OS X 10.4.8 Apple Mac OS X 10.4.7 Apple Mac OS X 10.4.6 Apple Mac OS X 10.4.5 Apple Mac OS X 10.4.4 Apple Mac OS X 10.4.3 Apple Mac OS X 10.4.2 Apple Mac OS X 10.4.1 Apple Mac OS X 10.4 Apple Mac OS X 10.5

Not Vulnerable:	Clam Anti-Virus ClamAV 0.94

Discussion

ClamAV 'chmunpack.c' Invalid Memory Access Denial Of Service Vulnerability

ClamAV is prone to a denial-of-service vulnerability because of invalid memory access errors when processing malformed CHM files.

Attackers can exploit this issue to cause denial-of-service conditions. Given the nature of this issue, attackers may also be able to run arbitrary code, but this has not been confirmed.

Versions prior to ClamAV 0.94 are vulnerable.

Exploit / POC

ClamAV 'chmunpack.c' Invalid Memory Access Denial Of Service Vulnerability

Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

ClamAV 'chmunpack.c' Invalid Memory Access Denial Of Service Vulnerability

Solution:
Fixes are available. Please see the references for more information.

Clam Anti-Virus ClamAV 0.88.6

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Mandriva Linux Mandrake 2008.0 x86_64

Mandriva clamav-0.94-1.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-db-0.94-1.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-milter-0.94-1.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamd-0.94-1.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64clamav-devel-0.94-1.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64clamav5-0.94-1.2mdv2008.0.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2008.0

Mandriva clamav-0.94-1.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-db-0.94-1.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-milter-0.94-1.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamd-0.94-1.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libclamav-devel-0.94-1.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libclamav5-0.94-1.2mdv2008.0.i586.rpm
http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2007.1

Mandriva clamav-0.94-1.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-db-0.94-1.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-milter-0.94-1.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamd-0.94-1.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libclamav-devel-0.94-1.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libclamav5-0.94-1.2mdv2007.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2007.1 x86_64

Mandriva clamav-0.94-1.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-db-0.94-1.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-milter-0.94-1.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamd-0.94-1.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64clamav-devel-0.94-1.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64clamav5-0.94-1.2mdv2007.1.x86_64.rpm
http://www.mandriva.com/en/download/

Clam Anti-Virus ClamAV 0.93

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Mandriva Linux Mandrake 2008.1 x86_64

Mandriva clamav-0.94-1.2mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-db-0.94-1.2mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-milter-0.94-1.2mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamd-0.94-1.2mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64clamav-devel-0.94-1.2mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64clamav5-0.94-1.2mdv2008.1.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2008.1

Mandriva clamav-0.94-1.2mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-db-0.94-1.2mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-milter-0.94-1.2mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamd-0.94-1.2mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libclamav-devel-0.94-1.2mdv2008.1.i586.rpm
http://www.mandriva.com/en/download/

Clam Anti-Virus ClamAV 0.51

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.53

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.65

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.70

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.75.1

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.80 rc4

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.80

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.80 rc3

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.80 rc1

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.81

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.82

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.83

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.84

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.84 rc2

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.84 rc1

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.85

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.86 .1

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.86

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.86.2

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.87

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.87 -1

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.87.1

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.88.1

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.88.2

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.88.3

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.88.5

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.90.1

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.90.2

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.90.3

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.91.1

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Clam Anti-Virus ClamAV 0.93.1

Clam Anti-Virus clamav-0.94.tar.gz
http://downloads.sourceforge.net/clamav/clamav-0.94.tar.gz

Apple Mac OS X Server 10.4.11

Apple SecUpdSrvr2008-007PPC.dmg
(PPC)
http://www.apple.com/support/downloads/securityupdate2008007serverppc. html

Apple SecUpdSrvr2008-007Univ.dmg
(Universal)
http://www.apple.com/support/downloads/securityupdate2008007serveruniv ersal.html

Apple Mac OS X Server 10.5.5

Apple SecUpdSrvr2008-007.dmg
http://www.apple.com/support/downloads/securityupdate2008007serverleop ard.html

MandrakeSoft Corporate Server 3.0

Mandriva clamav-0.94-0.2.C30mdk.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-db-0.94-0.2.C30mdk.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-milter-0.94-0.2.C30mdk.i586.rpm
http://www.mandriva.com/en/download/

Mandriva clamd-0.94-0.2.C30mdk.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libclamav-devel-0.94-0.2.C30mdk.i586.rpm
http://www.mandriva.com/en/download/

Mandriva libclamav5-0.94-0.2.C30mdk.i586.rpm
http://www.mandriva.com/en/download/

MandrakeSoft Corporate Server 3.0 x86_64

Mandriva clamav-0.94-0.2.C30mdk.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-db-0.94-0.2.C30mdk.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamav-milter-0.94-0.2.C30mdk.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva clamd-0.94-0.2.C30mdk.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64clamav-devel-0.94-0.2.C30mdk.x86_64.rpm
http://www.mandriva.com/en/download/

Mandriva lib64clamav5-0.94-0.2.C30mdk.x86_64.rpm
http://www.mandriva.com/en/download/

References

ClamAV 'chmunpack.c' Invalid Memory Access Denial Of Service Vulnerability

References:

Bugzilla Bug 1089 clamav chm handler: crasher bugs (Hanno Bock)
ClamAV Changelog (Clam Anti-Virus)
ClamAV Homepage (Clam Anti-Virus)
clamav: Crash with crafted chm, CVE-2008-1389 (Hanno =?utf-8?q?B=C3=B6ck?= )
Kolab Security Issue 22 20080911 (Kolab)