CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2013-7088 – Gentoo Linux Security Advisory 201405-08
https://notcve.org/view.php?id=CVE-2013-7088
19 May 2014 — ClamAV before 0.97.7 has buffer overflow in the libclamav component ClamAV versiones anteriores a la versión 0.97.7, tiene un desbordamiento de búfer en el componente libclamav. Multiple vulnerabilities have been found in ClamAV, the worst of which could lead to arbitrary code execution. Versions less than 0.98 are affected. • http://security.gentoo.org/glsa/glsa-201405-08.xml • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2013-7089 – Gentoo Linux Security Advisory 201405-08
https://notcve.org/view.php?id=CVE-2013-7089
19 May 2014 — ClamAV before 0.97.7: dbg_printhex possible information leak ClamAV versiones anteriores a la versión 0.97.7: posible fuga de información de la función dbg_printhex. Multiple vulnerabilities have been found in ClamAV, the worst of which could lead to arbitrary code execution. Versions less than 0.98 are affected. • http://security.gentoo.org/glsa/glsa-201405-08.xml • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 12%CPEs: 60EXPL: 0CVE-2013-2020 – Apple Security Advisory 2013-09-12-1
https://notcve.org/view.php?id=CVE-2013-2020
13 May 2013 — Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read. Desbordamiento de entero en la función cli_scanpe en pe.c en ClamAV anterior a v0.97.8 permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) a través de un desplazamiento mayor que el tamaño de las secciones PE en ... • http://blog.clamav.net/2013/04/clamav-0978-has-been-released.html • CWE-189: Numeric Errors •
CVSS: 5.5EPSS: 9%CPEs: 14EXPL: 0CVE-2013-2021 – Apple Security Advisory 2013-09-12-1
https://notcve.org/view.php?id=CVE-2013-2021
13 May 2013 — pdf.c in ClamAV 0.97.1 through 0.97.7 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted length value in an encrypted PDF file. pdf.c en ClamAV v0.97.1 hasta v0.97.7 ermite a atacantes remotos provocar una denegación de servicio (lectura fuera de limite) a través de la modificación de longitud en un fichero PDF cifrado. Multiple vulnerabilities have been found in ClamAV, the worst of which could lead to arbitrary code execution. Versions less than 0.98 are affected. • http://blog.clamav.net/2013/04/clamav-0978-has-been-released.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 1%CPEs: 43EXPL: 0CVE-2011-3627
https://notcve.org/view.php?id=CVE-2011-3627
17 Nov 2011 — The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/bytecode_api.c. El motor de código de bytes en ClamAV anterior a v0.97.3 permite a atacantes remotos causar una denegación de servicio (caída) a través de vectores relacionados con el "nivel de recursividad" y (1) libclamav / bytecode.c y (2) libclamav / bytecode_api.c. • http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commitdiff%3Bh=3d664817f6ef833a17414a4ecea42004c35cc42f • CWE-189: Numeric Errors •
CVSS: 7.5EPSS: 3%CPEs: 117EXPL: 0CVE-2011-2721
https://notcve.org/view.php?id=CVE-2011-2721
05 Aug 2011 — Off-by-one error in the cli_hm_scan function in matcher-hash.c in libclamav in ClamAV before 0.97.2 allows remote attackers to cause a denial of service (daemon crash) via an e-mail message that is not properly handled during certain hash calculations. Error "off-by-one" (desbordamiento en un elemento del array) en la función cli_hm_scan de matcher-hash.c de libclamav de ClamAV en versiones anteriores a la 0.97.2 permite a atacantes remotos provocar una denegación de servicio (caída del demonio) a través de... • http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=blob_plain%3Bf=ChangeLog%3Bhb=clamav-0.97.2 • CWE-189: Numeric Errors •