Computer Security
[EN] securityvulns.ru no-pyccku


ClamAV antivirus multiple vulnerabilities
updated since 13.04.2007
Published:16.04.2007
Source:
SecurityVulns ID:7580
Type:remote
Threat Level:
6/10
Description:Buffer overflow on CAB files parsing, DoS on CHM parsing. PDF files parsing descriptors leak.
Affected:CLAMAV : ClamAV 0.90
CVE:CVE-2007-2029 (File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file.)
 CVE-2007-1997 (Integer signedness error in the (1) cab_unstore and (2) cab_extract functions in libclamav/cab.c in Clam AntiVirus (ClamAV) before 0.90.2 allow remote attackers to execute arbitrary code via a crafted CHM file that contains a negative integer, which passes a signed comparison and leads to a stack-based buffer overflow.)
 CVE-2007-1745 (The chm_decompress_stream function in libclamav/chmunpack.c in Clam AntiVirus (ClamAV) before 0.90.2 leaks file descriptors, which has unknown impact and attack vectors involving a crafted CHM file, a different vulnerability than CVE-2007-0897. NOTE: some of these details are obtained from third party information.)
Original documentdocumentIDEFENSE, [Full-disclosure] iDefense Security Advisory 04.16.07: ClamAV CAB File Unstore Buffer Overflow Vulnerability (16.04.2007)
 documentSECUNIA, [SA24891] Clam AntiVirus Two Vulnerabilities (13.04.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod