Page 16 of 85 results (0.005 seconds)

CVSS: 7.5EPSS: 26%CPEs: 1EXPL: 1

Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow. Desbordamiento de buffer en libclamav en ClamAV , en versiones anteriores a la 0.92. Permite que atacantes remotos ejecuten código a su elección, a través de un fichero PE empaquetado con MEW, lo que provoca un desboramiento de buffer en el heap(pila de datos dinámicos). • https://www.exploit-db.com/exploits/4862 http://docs.info.apple.com/article.html?artnum=307562 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=634 http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00002.html http://secunia.com/advisories/28117 http://secunia.com/advisories/28153 http://secunia.com/advisories/28176 http://secunia.com/advisories/28278 http://secunia.com/advisories • CWE-189: Numeric Errors •

CVSS: 7.6EPSS: 96%CPEs: 1EXPL: 3

clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail." clamav-milter en ClamAV anterior a 0.91.2, cuando funciona en modo agujero negro (black hole), permite a atacantes remotos ejecutar comandos de su elección a través de metacaractéres del intérprete de comandos que es utilizado en ciertas llamadas popen, afectando a "el campo recipiente de sendmail". • https://www.exploit-db.com/exploits/16924 https://www.exploit-db.com/exploits/9913 https://www.exploit-db.com/exploits/4761 http://docs.info.apple.com/article.html?artnum=307562 http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html http://secunia.com/advisories/26654 http://secunia.com/advisories/26674 http://secunia.com/advisories/26683 http://secunia.com/advisories/26751 http://secunia.com/advisories/26822 http://secunia.com/advisories/26916 http:/ • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •

CVSS: 4.3EPSS: 12%CPEs: 8EXPL: 0

ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and other products, allows remote attackers to cause a denial of service (application crash) via (1) a crafted RTF file, which triggers a NULL dereference in the cli_scanrtf function in libclamav/rtf.c; or (2) a crafted HTML document with a data: URI, which triggers a NULL dereference in the cli_html_normalise function in libclamav/htmlnorm.c. NOTE: some of these details are obtained from third party information. ClamAV anterior a 0.91.2, usado en Kolab Server 2.0 hasta 2.2.beta1 y otros productos, permite a atacantes remotos provocar una denegación de servicio (caída de aplicación) mediante (1) un archivo RTF manipulado, que dispara una referencia a NULL en la función cli-scanrtf de libclamav/rtf.c; o (2) un documento HTML manipulado con un URI data:, el cual dispara una referencia a NULL en la función cli_html_normalise de libclamav/htmlnorm.c. NOTA: algunos de estos detalles se han obtenido de información de terceros. • http://docs.info.apple.com/article.html?artnum=307562 http://kolab.org/security/kolab-vendor-notice-17.txt http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html http://secunia.com/advisories/26530 http://secunia.com/advisories/26552 http://secunia.com/advisories/26654 http://secunia.com/advisories/26674 http://secunia.com/advisories/26683 http://secunia.com/advisories/26751 http://secunia.com/advisories/26822 http://secunia.com/advisories/26916 http://s •

CVSS: 4.3EPSS: 13%CPEs: 54EXPL: 2

The RAR VM (unrarvm.c) in Clam Antivirus (ClamAV) before 0.91 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted RAR archive, resulting in a NULL pointer dereference. El módulo RAR VM (unrarvm.c) de Clam Antivirus (ClamAV) anterior a 0.91 permite a atacantes remotos con la intervención del usuario provocar una denegación de servicio (caída) mediante un archivo RAR manipulado, resultando en una referencia a punero nulo (NULL). • https://www.exploit-db.com/exploits/30291 http://docs.info.apple.com/article.html?artnum=307562 http://kolab.org/security/kolab-vendor-notice-16.txt http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html http://lists.grok.org.uk/pipermail/full-disclosure/2007-July/064569.html http://osvdb.org/36907 http://secunia.com/advisories/26038 http://secunia.com/advisories/26164 http://secunia.com/advisories/26209 http://secunia.com/advisories/26226 http://secuni •

CVSS: 2.1EPSS: 0%CPEs: 6EXPL: 0

libclamav/others.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files. El libclamav/others.c del ClamAV en versiones anteriores a la 0.90.3 y la 0.91 en versiones anteriores a la 0.91rc1 usa permisos inseguros para los ficheros temporales que son creados por la función cli_gentempstream en el clamd/clamdscan, lo cual permitiría a usuarios locales leer ficheros con información sensible. • http://kolab.org/security/kolab-vendor-notice-15.txt http://lurker.clamav.net/message/20070530.224918.5c64abc4.en.html http://secunia.com/advisories/25523 http://secunia.com/advisories/25525 http://secunia.com/advisories/25688 http://secunia.com/advisories/25796 http://security.gentoo.org/glsa/glsa-200706-05.xml http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog http://www.debian.org/security/2007/dsa-1320 http://www.novell.com/linux/security/advisories/2007_33_clamav •