Clam Anti-virus » Clamav : Security Vulnerabilities, CVEs, Published In 2006 (Denial of service) CVSS score >= 1
Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406.
Max CVSS
5.0
EPSS Score
9.58%
Published
2006-12-12
Updated
2011-03-08
Clam AntiVirus (ClamAV) 0.88 and earlier allows remote attackers to cause a denial of service (crash) via a malformed base64-encoded MIME attachment that triggers a null pointer dereference.
Max CVSS
5.0
EPSS Score
8.66%
Published
2006-12-10
Updated
2010-09-15
Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service (scanning service crash) via a crafted Compressed HTML Help (CHM) file that causes ClamAV to "read an invalid memory location."
Max CVSS
5.0
EPSS Score
23.15%
Published
2006-10-16
Updated
2017-07-20
Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected.
Max CVSS
7.5
EPSS Score
36.67%
Published
2006-10-16
Updated
2017-07-20
The cli_bitset_set function in libclamav/others.c in Clam AntiVirus (ClamAV) before 0.88.1 allows remote attackers to cause a denial of service via unspecified vectors that trigger an "invalid memory access."
Max CVSS
5.0
EPSS Score
22.84%
Published
2006-04-06
Updated
2017-07-20
Integer overflow in the cli_scanpe function in the PE header parser (libclamav/pe.c) in Clam AntiVirus (ClamAV) before 0.88.1, when ArchiveMaxFileSize is disabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code.
Max CVSS
5.1
EPSS Score
9.85%
Published
2006-04-06
Updated
2018-10-18
Heap-based buffer overflow in libclamav/upx.c in Clam Antivirus (ClamAV) before 0.88 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted UPX files.
Max CVSS
7.5
EPSS Score
37.58%
Published
2006-01-10
Updated
2017-07-20
7 vulnerabilities found