Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0218

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-0218
Last Modified 10 Sep 2008 03:35:07
Published 02 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0218

Summary

ClamAV 0.80 and earlier allows remote attackers to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL.

Vulnerable Systems

Application

  • Clam Anti-virus Clamav 0.51

  • Clam Anti-virus Clamav 0.52

  • Clam Anti-virus Clamav 0.53

  • Clam Anti-virus Clamav 0.54

  • Clam Anti-virus Clamav 0.60

  • Clam Anti-virus Clamav 0.65

  • Clam Anti-virus Clamav 0.67

  • Clam Anti-virus Clamav 0.68

  • Clam Anti-virus Clamav 0.68.1

  • Clam Anti-virus Clamav 0.80


References

GENTOO - GLSA-200501-46

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=300116

SECUNIA - 13900

MANDRAKE - MDKSA-2005:025


Last Updated: 27 May 2016 10:39:43