Vulnerability Details : CVE-2017-12377
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or potentially execute arbitrary code on an affected device. The vulnerability is due to improper input validation checking mechanisms in mew packet files sent to an affected device. A successful exploit could cause a heap-based buffer over-read condition in mew.c when ClamAV scans the malicious file, allowing the attacker to cause a DoS condition or potentially execute arbitrary code on the affected device.
Vulnerability category: Execute codeDenial of service
Products affected by CVE-2017-12377
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:clamav:clamav:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-12377
1.69%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 86 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-12377
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST | |
9.8
|
CRITICAL | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
3.9
|
5.9
|
NIST |
CWE ids for CVE-2017-12377
-
The product reads data past the end, or before the beginning, of the intended buffer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2017-12377
-
https://usn.ubuntu.com/3550-2/
USN-3550-2: ClamAV vulnerabilities | Ubuntu security notices
-
http://blog.clamav.net/2018/01/clamav-0993-has-been-released.html
ClamAV® blog: ClamAV 0.99.3 has been released!Release Notes;Vendor Advisory
-
https://lists.debian.org/debian-lts-announce/2018/01/msg00035.html
[SECURITY] [DLA 1261-1] clamav security updateMailing List;Third Party Advisory
-
https://usn.ubuntu.com/3550-1/
USN-3550-1: ClamAV vulnerabilities | Ubuntu security notices
-
https://bugzilla.clamav.net/show_bug.cgi?id=11943
Bug 11943 – Heap overflow in zma_bswap_4861dc (mew.c)Exploit;Issue Tracking;Vendor Advisory
Jump to