Clam Anti-virus » Clamav : Security Vulnerabilities, CVEs, Published In 2006 (Denial of service) CVSS score >= 6
Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected.
Max CVSS
7.5
EPSS Score
36.67%
Published
2006-10-16
Updated
2017-07-20
Heap-based buffer overflow in libclamav/upx.c in Clam Antivirus (ClamAV) before 0.88 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted UPX files.
Max CVSS
7.5
EPSS Score
37.58%
Published
2006-01-10
Updated
2017-07-20
2 vulnerabilities found