Known Vulnerabilities for products from Clam Anti-virus
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Clam Anti-virus".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2008-5314 | Stack consumption vulnerability in libclamav/special.c in ClamAV before 0.94.2 allows remote attackers to cause a denial of s... | 4.3 - MEDIUM | 2008-12-03 | 2017-09-29 |
| CVE-2008-5050 | Off-by-one error in the get_unicode_name function (libclamav/vba_extract.c) in Clam Anti-Virus (ClamAV) before 0.94.1 allows ... | 9.3 - HIGH | 2008-11-13 | 2018-10-11 |
| CVE-2008-3215 | libclamav/petite.c in ClamAV before 0.93.3 allows remote attackers to cause a denial of service via a malformed Petite file t... | 5 - MEDIUM | 2008-07-18 | 2017-08-08 |
| CVE-2008-2713 | libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file tha... | 5 - MEDIUM | 2008-06-16 | 2017-08-08 |
| CVE-2008-1837 | libclamunrar in ClamAV before 0.93 allows remote attackers to cause a denial of service (crash) via crafted RAR files that tr... | 5 - MEDIUM | 2008-04-16 | 2017-08-08 |
| CVE-2008-1836 | The rfc2231 function in message.c in libclamav in ClamAV before 0.93 allows remote attackers to cause a denial of service (cr... | 4.3 - MEDIUM | 2008-04-16 | 2017-08-08 |
| CVE-2008-1835 | ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which... | 5 - MEDIUM | 2008-04-16 | 2017-08-08 |
| CVE-2008-1833 | Heap-based buffer overflow in pe.c in libclamav in ClamAV 0.92.1 allows remote attackers to execute arbitrary code via a craf... | 7.5 - HIGH | 2008-04-16 | 2017-08-08 |
| CVE-2008-1389 | libclamav/chmunpack.c in the chm-parser in ClamAV before 0.94 allows remote attackers to cause a denial of service (applicati... | 5 - MEDIUM | 2008-09-04 | 2011-03-08 |
| CVE-2008-1387 | ClamAV before 0.93 allows remote attackers to cause a denial of service (CPU consumption) via a crafted ARJ archive, as demon... | 4.3 - MEDIUM | 2008-04-16 | 2018-10-11 |
| CVE-2008-1100 | Buffer overflow in the cli_scanpe function in libclamav (libclamav/pe.c) for ClamAV 0.92 and 0.92.1 allows remote attackers t... | 10 - HIGH | 2008-04-14 | 2017-08-08 |
| CVE-2008-0318 | Integer overflow in the cli_scanpe function in libclamav in ClamAV before 0.92.1, as used in clamd, allows remote attackers t... | 10 - HIGH | 2008-02-12 | 2011-03-07 |
| CVE-2008-0314 | Heap-based buffer overflow in spin.c in libclamav in ClamAV 0.92.1 allows remote attackers to execute arbitrary code via a cr... | 7.5 - HIGH | 2008-04-16 | 2017-08-08 |
| CVE-2007-6596 | ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass the scanner via a Base64-UU... | 5 - MEDIUM | 2007-12-31 | 2018-10-15 |
| CVE-2007-6595 | ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gente... | 2.1 - LOW | 2007-12-31 | 2018-10-15 |
| CVE-2007-6337 | Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private.h in ClamAV before 0.92 has unknown impa... | 10 - HIGH | 2007-12-31 | 2011-03-08 |
| CVE-2007-6336 | Off-by-one error in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MS-ZIP compressed CAB ... | 6.8 - MEDIUM | 2007-12-20 | 2017-08-08 |
| CVE-2007-6335 | Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packe... | 7.5 - HIGH | 2007-12-20 | 2017-09-29 |
| CVE-2007-6029 | Unspecified vulnerability in ClamAV 0.91.1 and 0.91.2 allows remote attackers to execute arbitrary code via a crafted e-mail ... | 7.5 - HIGH | 2007-11-20 | 2008-09-05 |
| CVE-2007-4560 | clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via... | 7.6 - HIGH | 2007-08-28 | 2018-10-15 |