Next Page >>
Clam AntiVirus
========================================================================
TK53 Advisory #2 12/29/2007
- Multiple vulnerabilities in ClamAV
========================================================================
* Authors: Roflek of TK53 <roflek1337@gmail.com>, Lolek of TK53
<lolek1337@gmail.com>
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: High
Title: Clam AntiVirus: Multiple vulnerabilities
Date: October 23, 2011
Bugs: #338226, #347627, #354019, #378815, #387521
ID: 201110-20
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Clam AntiVirus: Multiple vulnerabilities
Date: September 09, 2009
Bugs: #264834, #265545
ID: 200909-04
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2007/08/24 n.runs AG releases a coordinated disclosure advisory
________________________________________________________________________
Overview:
Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX,
designed especially for e-mail scanning on mail gateways. It provides
a number of utilities including a flexible and scalable multi-threaded
daemon, a command line scanner and advanced tool for automatic database
updates. The core of the package is an anti-virus engine available in
a form of shared library.
Mandriva Linux Security Advisory MDVSA-2008:088
http://www.mandriva.com/security/
_______________________________________________________________________
Package : clamav
Date : April 17, 2008
Affected: 2007.1, 2008.0, 2008.1, Corporate 3.0, Corporate 4.0
_______________________________________________________________________
Problem Description:
Please see "Common misconceptions" for more information.
I. Background
~~~~~~~~~~~~~
Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX,
designed especially for e-mail scanning on mail gateways. It provides
a number of utilities including a flexible and scalable multi-threaded
daemon, a command line scanner and advanced tool for automatic
database updates. The core of the package is an anti-virus engine
available in a form of shared library.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Severity: Normal
Title: Clam AntiVirus: Multiple vulnerabilities
Date: September 07, 2010
Bugs: #314087, #321157
ID: 201009-06
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://labs.idefense.com/intelligence/vulnerabilities/
Feb 12, 2008
I. BACKGROUND
Clam AntiVirus is a multi-platform GPL anti-virus toolkit. ClamAV is
often integrated into e-mail gateways and used to scan e-mail traffic
for viruses. It supports virus scanning for a wide variety of packed
Portable Executable (PE) binaries. For more information visit the
vendor's web site at the following URL.
http://labs.idefense.com/intelligence/vulnerabilities/
Dec 18, 2007
I. BACKGROUND
Clam AntiVirus is a multi-platform anti-virus toolkit released under the
GNU Public License. ClamAV is often integrated into e-mail gateways and
used to scan e-mail messages for viruses. PE, or portable executable,
is the executable file format on Microsoft Windows systems. MEW is one
of the many executable packers that is supported by ClamAV. More
information can be found on the vendor's website at the following URL.
http://labs.idefense.com/intelligence/vulnerabilities/
Apr 14, 2008
I. BACKGROUND
Clam AntiVirus is a multi-platform GPL anti-virus toolkit. ClamAV is
often integrated into e-mail gateways and used to scan e-mail traffic
for viruses. It supports virus scanning for a wide variety of packed
Portable Executable (PE) binaries. WWPack is one of the supported
packers. For more information visit the vendor's web site at the
following URL.
Mandriva Linux Security Advisory MDVSA-2009:097
http://www.mandriva.com/security/
_______________________________________________________________________
Package : clamav
Date : April 24, 2009
Affected: 2008.1, 2009.0, Corporate 3.0, Corporate 4.0
_______________________________________________________________________
Problem Description:
Mandriva Linux Security Advisory MDVSA-2009:327
http://www.mandriva.com/security/
_______________________________________________________________________
Package : clamav
Date : December 8, 2009
Affected: 2008.0
_______________________________________________________________________
Problem Description:
Mandriva Linux Security Advisory MDVSA-2009:097
http://www.mandriva.com/security/
_______________________________________________________________________
Package : clamav
Date : April 24, 2009
Affected: 2008.1, 2009.0, Corporate 3.0, Corporate 4.0
_______________________________________________________________________
Problem Description:
execution of arbitrary code and Denial of Service attacks.
Background
==========
Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX,
designed especially for e-mail scanning on mail gateways.
Affected packages
=================
ClamAV 0.94.1/8713/Tue Dec 2 14:59:31 2008
From http://securitytracker.com/alerts/2008/Dec/1021296.html:
Version(s): prior to 0.94.2
Description: A vulnerability was reported in Clam AntiVirus. A remote user can cause denial of service conditions on the target system.
A remote user can create a specially crafted JPEG file that, when processed by the target system, will trigger a stack overflow and cause the Clam AntiVirus process to crash.
Ilja van Sprundel reported this vulnerability.
Impact: A remote user can create a JPEG file that, when processed by the target application, will cause the target application to crash.
of arbitrary code.
Background
==========
Clam AntiVirus is a free anti-virus toolkit for UNIX, designed
especially for e-mail scanning on mail gateways.
Affected packages
=================
of arbitrary code.
Background
==========
Clam AntiVirus is a free anti-virus toolkit for UNIX, designed
especially for e-mail scanning on mail gateways.
Affected packages
=================
execution of arbitrary code and Denial of Service attacks.
Background
==========
Clam AntiVirus is a free anti-virus toolkit for UNIX, designed
especially for e-mail scanning on mail gateways.
Affected packages
=================
Mandriva Linux Security Advisory MDVSA-2008:189-1
http://www.mandriva.com/security/
_______________________________________________________________________
Package : clamav
Date : September 17, 2008
Affected: 2007.1, 2008.0, 2008.1, Corporate 3.0, Corporate 4.0
_______________________________________________________________________
Problem Description:
- IBM Secure E-mail Express Solution for System
Others : http://www.clamav.net/about/who-use-clamav/
I. Background
~~~~~~~~~~~~~
Quote: "Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX,
designed especially for e-mail scanning on mail gateways. It provides
a number of utilities including a flexible and scalable multi-threaded
daemon, a command line scanner and advanced tool for automatic
database updates. The core of the package is an anti-virus engine
available in a form of shared library. "
Multiple vulnerabilities in ClamAV may result in a Denial of Service.
Background
==========
Clam AntiVirus is a free anti-virus toolkit for UNIX, designed
especially for e-mail scanning on mail gateways.
Affected packages
=================
===========================================================
Ubuntu Security Notice USN-770-1 May 04, 2009
clamav vulnerability
https://launchpad.net/bugs/365823
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 9.04
clamav: Crash with crafted chm, CVE-2008-1389
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1389
http://int21.de/cve/CVE-2008-1389-clamav-chd.html
http://www.int21.de/cve/cve-2008-1389-samples.tar.bz2
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1089
Description
- IBM Secure E-mail Express Solution for System
http://www.clamav.net/about/who-use-clamav/
I. Background
~~~~~~~~~~~~~
Quote: "Clam AntiVirus is an open source (GPL) anti-virus toolkit for UNIX,
designed especially for e-mail scanning on mail gateways. It provides
a number of utilities including a flexible and scalable multi-threaded
daemon, a command line scanner and advanced tool for automatic
database updates. The core of the package is an anti-virus engine
available in a form of shared library. "
standard modules enabled). This verion is intended as a replacement for
a standard apache, the configuration files provided with apache and
apache-ssl are unchanged.
clamav
Clam AntiVirus is a GPL anti-virus toolkit for UNIX. The main purpose
of this software is the integration with mail servers (attachment
scanning). The package provides a flexible and scalable multi-threaded
daemon, a command line scanner, and a tool for automatic updating via
Internet. The programs are based on a shared library distributed with
package, which you can use with your own software. Most importantly,
Debian Security Advisory DSA-1616-2 security@debian.org
http://www.debian.org/security/ Devin Carraway
July 26, 2008 http://www.debian.org/security/faq
- ------------------------------------------------------------------------
Package : clamav
Vulnerability : denial of service
Problem type : remote
Debian-specific: no
CVE Id(s) : CVE-2008-2713
Debian Bug : 490925
arbitrary code or a Denial of Service.
Background
==========
Clam AntiVirus is a free anti-virus toolkit for UNIX, designed
especially for e-mail scanning on mail gateways.
Affected packages
=================
Mandriva Linux Security Advisory MDVSA-2010:082-1
http://www.mandriva.com/security/
_______________________________________________________________________
Package : clamav
Date : May 20, 2010
Affected: 2009.0
_______________________________________________________________________
Problem Description:
Mandriva Linux Security Advisory MDVSA-2010:249
http://www.mandriva.com/security/
_______________________________________________________________________
Package : clamav
Date : December 7, 2010
Affected: 2009.0, Corporate 4.0, Enterprise Server 5.0
_______________________________________________________________________
Problem Description:
Mandriva Linux Security Advisory MDVSA-2008:189
http://www.mandriva.com/security/
_______________________________________________________________________
Package : clamav
Date : September 9, 2008
Affected: 2007.1, 2008.0, 2008.1, Corporate 3.0, Corporate 4.0
_______________________________________________________________________
Problem Description:
Next Page>>
|
