Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6595

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2007-6595
Last Modified 07 Mar 2011 10:03:15
Published 31 Dec 2007 02:46:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-6595

Summary

ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.

Vulnerable Systems

Application

  • Clam Anti-virus Clamav 0.92


References

XF - clamantivirus-sigtool-file-overwrite(39339)

XF - clamantivirus-cligentempfd-symlink(39335)

VUPEN - ADV-2008-0606

BID - 27064

BUGTRAQ - 20071229 TK53 Advisory #2: Multiple vulnerabilities in ClamAV

DEBIAN - DSA-1497

SECTRACK - 1019148

SREASON - 3501

GENTOO - GLSA-200808-07

SECUNIA - 31437

SECUNIA - 28949

CONFIRM - http://kolab.org/security/kolab-vendor-notice-19.txt

MANDRIVA - MDVSA-2008:088

SECUNIA - 29891

SUSE - SUSE-SA:2008:024


Last Updated: 27 May 2016 10:46:32