Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3239

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2005-3239
Last Modified 02 Apr 2010 01:50:29
Published 14 Oct 2005 03:02:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3239

Summary

The OLE2 unpacker in clamd in Clam AntiVirus (ClamAV) 0.87-1 allows remote attackers to cause a denial of service (segmentation fault) via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2_walk_property_tree function.

Vulnerable Systems

Application

  • Clam Anti-virus Clamav .


References

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=368319

CONFIRM - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=333566

BID - 15101

OSVDB - 20536

MANDRIVA - MDKSA-2005:205

GENTOO - GLSA-200511-04

DEBIAN - DSA-887

SECTRACK - 1015154

SECUNIA - 17559

SECUNIA - 17501

SECUNIA - 17451

SECUNIA - 17448

SECUNIA - 17184


Last Updated: 27 May 2016 10:40:51