CVSS: 5.5EPSS: 20%CPEs: 48EXPL: 1CVE-2006-5295 – Clam AntiVirus 0.88.4 - CHM Chunk Name Length Denial of Service (PoC)
https://notcve.org/view.php?id=CVE-2006-5295
16 Oct 2006 — Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service (scanning service crash) via a crafted Compressed HTML Help (CHM) file that causes ClamAV to "read an invalid memory location." Vulnerabilidad no especificada en ClamAV anterior a 0.88.5 permite a atacantes remotos provocar una denegación de servicio (caída del servicio de escaneo) mediante un archivo de Ayuda HTML comprimida (CHM) creado artesanalmente que hace que ClamAV lea una posición de memoria invál... • https://www.exploit-db.com/exploits/2586 •
CVSS: 10.0EPSS: 36%CPEs: 59EXPL: 0CVE-2006-1615
https://notcve.org/view.php?id=CVE-2006-1615
06 Apr 2006 — Multiple format string vulnerabilities in the logging code in Clam AntiVirus (ClamAV) before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized properly. • http://lists.apple.com/archives/security-announce/2006/May/msg00003.html • CWE-134: Use of Externally-Controlled Format String •
CVSS: 5.5EPSS: 7%CPEs: 58EXPL: 1CVE-2005-3501
https://notcve.org/view.php?id=CVE-2005-3501
05 Nov 2005 — The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero length. • http://secunia.com/advisories/17184 • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 1CVE-2005-1795
https://notcve.org/view.php?id=CVE-2005-1795
27 May 2005 — The filecopy function in misc.c in Clam AntiVirus (ClamAV) before 0.85, on Mac OS, allows remote attackers to execute arbitrary code via a virus in a filename that contains shell metacharacters, which are not properly handled when HFS permissions prevent the file from being deleted and ditto is invoked. La función filecopy en misc.c en Clam AntiVirus (ClamAV) en versiones anteriores a 0.85, en Mac OS, permite a atacantes remotos ejecutar código arbitrario a través de un virus en un nombre de archivo que con... • http://securitytracker.com/id?1014070 • CWE-20: Improper Input Validation •