Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0728

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-0728
Last Modified 11 Oct 2011 12:00:00
Published 12 Feb 2008 03:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0728

Summary

The unmew11 function in libclamav/mew.c in libclamav in ClamAV before 0.92.1 has unknown impact and attack vectors that trigger "heap corruption."

Vulnerable Systems

Application

  • Clamav 0.01

  • Clamav 0.02

  • Clamav 0.03

  • Clamav 0.05

  • Clamav 0.10

  • Clamav 0.12

  • Clamav 0.13

  • Clamav 0.14

  • Clamav 0.15

  • Clamav 0.20

  • Clamav 0.21

  • Clamav 0.22

  • Clamav 0.23

  • Clamav 0.24

  • Clamav 0.3

  • Clamav 0.51

  • Clamav 0.52

  • Clamav 0.53

  • Clamav 0.54

  • Clamav 0.60

  • Clamav 0.60p

  • Clamav 0.65

  • Clamav 0.66

  • Clamav 0.67

  • Clamav 0.67-1

  • Clamav 0.68

  • Clamav 0.68.1

  • Clamav 0.70

  • Clamav 0.71

  • Clamav 0.72

  • Clamav 0.73

  • Clamav 0.74

  • Clamav 0.75

  • Clamav 0.75.1

  • Clamav 0.8

  • Clamav 0.80

  • Clamav 0.80 Rc

  • Clamav 0.81

  • Clamav 0.82

  • Clamav 0.83

  • Clamav 0.84

  • Clamav 0.85

  • Clamav 0.85.1

  • Clamav 0.86

  • Clamav 0.86.1

  • Clamav 0.86.2

  • Clamav 0.87

  • Clamav 0.87.1

  • Clamav 0.88

  • Clamav 0.88.1

  • Clamav 0.88.2

  • Clamav 0.88.3

  • Clamav 0.88.4

  • Clamav 0.88.5

  • Clamav 0.88.6

  • Clamav 0.88.7

  • Clamav 0.88.7 P0

  • Clamav 0.88.7 P1

  • Clamav 0.9

  • Clamav 0.90

  • Clamav 0.90.1

  • Clamav 0.90.1 P0

  • Clamav 0.90.2

  • Clamav 0.90.2 P0

  • Clamav 0.90.3

  • Clamav 0.90.3 P0

  • Clamav 0.90.3 P1

  • Clamav 0.91

  • Clamav 0.91.1

  • Clamav 0.91.2

  • Clamav 0.91.2 P0

  • Clamav 0.92

  • Clamav 0.92 P0


References

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=575703

XF - clamav-mewc-heap-corruption(40474)

VUPEN - ADV-2008-0924

VUPEN - ADV-2008-0606

VUPEN - ADV-2008-0503

MANDRIVA - MDVSA-2008:088

CONFIRM - http://support.novell.com/techcenter/psdb/512985d2cd3090bfb93dcb7b551179cf.html

GENTOO - GLSA-200802-09

SECUNIA - 29420

SECUNIA - 29060

SECUNIA - 29048

SECUNIA - 29026

SECUNIA - 29001

SECUNIA - 28907

SUSE - SUSE-SR:2008:004

APPLE - APPLE-SA-2008-03-18

CONFIRM - http://kolab.org/security/kolab-vendor-notice-19.txt

CONFIRM - http://docs.info.apple.com/article.html?artnum=307562

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=209915

Related Patches

Apple 2008-03-18 Security Update 2008-002 v1.0 Client (Leopard)

Apple 2008-03-26 Security Update 2008-002 v1.1 Server (Leopard) (Rev 2)

Apple 2008-03-26 Security Update 2008-002 v1.1 Client (Leopard) (Rev 2)


Last Updated: 27 May 2016 10:46:54