CVSS: 5.5EPSS: 5%CPEs: 33EXPL: 0CVE-2005-3500
https://notcve.org/view.php?id=CVE-2005-3500
05 Nov 2005 — The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via a crafted value in a CAB file that causes ClamAV to repeatedly scan the same block. • http://secunia.com/advisories/17184 •
CVSS: 5.5EPSS: 7%CPEs: 58EXPL: 1CVE-2005-3501
https://notcve.org/view.php?id=CVE-2005-3501
05 Nov 2005 — The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero length. • http://secunia.com/advisories/17184 • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 2%CPEs: 17EXPL: 0CVE-2005-2919
https://notcve.org/view.php?id=CVE-2005-2919
20 Sep 2005 — libclamav/fsg.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to cause a denial of service (infinite loop) via a crafted FSG packed executable. libclamav/fsg.c en Clam AntiVirus (ClamAV) en versiones anteriores a 0.87 permite a atacantes remotos provocar una denegación de servicio (bucle infinito) a través de un ejecutable empaquetado FSG . • http://secunia.com/advisories/16848 • CWE-17: DEPRECATED: Code CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 14%CPEs: 17EXPL: 0CVE-2005-2920
https://notcve.org/view.php?id=CVE-2005-2920
20 Sep 2005 — Buffer overflow in libclamav/upx.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable. • http://secunia.com/advisories/16848 •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2005-1922
https://notcve.org/view.php?id=CVE-2005-1922
30 Jun 2005 — The MS-Expand file handling in Clam AntiVirus (ClamAV) before 0.86 allows remote attackers to cause a denial of service (file descriptor and memory consumption) via a crafted file that causes repeated errors in the cli_msexpand function. • http://sourceforge.net/project/shownotes.php?release_id=336462 •
CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 1CVE-2005-1800 – Jaws Glossary 0.4/0.5 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2005-1800
28 May 2005 — Cross-site scripting (XSS) vulnerability in Jaws Glossary gadget 0.4 to 0.5.1 allows remote attackers to inject arbitrary web script or HTML via the term parameter in a view or ViewTerm action to index.php. • https://www.exploit-db.com/exploits/25740 •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 1CVE-2005-1795
https://notcve.org/view.php?id=CVE-2005-1795
27 May 2005 — The filecopy function in misc.c in Clam AntiVirus (ClamAV) before 0.85, on Mac OS, allows remote attackers to execute arbitrary code via a virus in a filename that contains shell metacharacters, which are not properly handled when HFS permissions prevent the file from being deleted and ditto is invoked. La función filecopy en misc.c en Clam AntiVirus (ClamAV) en versiones anteriores a 0.85, en Mac OS, permite a atacantes remotos ejecutar código arbitrario a través de un virus en un nombre de archivo que con... • http://securitytracker.com/id?1014070 • CWE-20: Improper Input Validation •