Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2713

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-2713
Last Modified 03 Jul 2013 12:01:05
Published 16 Jun 2008 05:41:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2713

Summary

libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file that triggers an out-of-bounds read.

Vulnerable Systems

Application

  • Clam Anti-virus Clamav 0.15

  • Clam Anti-virus Clamav 0.20

  • Clam Anti-virus Clamav 0.21

  • Clam Anti-virus Clamav 0.22

  • Clam Anti-virus Clamav 0.23

  • Clam Anti-virus Clamav 0.24

  • Clam Anti-virus Clamav 0.51

  • Clam Anti-virus Clamav 0.52

  • Clam Anti-virus Clamav 0.53

  • Clam Anti-virus Clamav 0.54

  • Clam Anti-virus Clamav 0.60

  • Clam Anti-virus Clamav 0.60p

  • Clam Anti-virus Clamav 0.65

  • Clam Anti-virus Clamav 0.67

  • Clam Anti-virus Clamav 0.68

  • Clam Anti-virus Clamav 0.68.1

  • Clam Anti-virus Clamav 0.70

  • Clam Anti-virus Clamav 0.71

  • Clam Anti-virus Clamav 0.72

  • Clam Anti-virus Clamav 0.73

  • Clam Anti-virus Clamav 0.74

  • Clam Anti-virus Clamav 0.75

  • Clam Anti-virus Clamav 0.75.1

  • Clam Anti-virus Clamav 0.80

  • Clam Anti-virus Clamav 0.80 Rc1

  • Clam Anti-virus Clamav 0.80 Rc2

  • Clam Anti-virus Clamav 0.80 Rc3

  • Clam Anti-virus Clamav 0.80 Rc4

  • Clam Anti-virus Clamav 0.81

  • Clam Anti-virus Clamav 0.81 Rc1

  • Clam Anti-virus Clamav 0.82

  • Clam Anti-virus Clamav 0.83

  • Clam Anti-virus Clamav 0.84

  • Clam Anti-virus Clamav 0.84 Rc1

  • Clam Anti-virus Clamav 0.84 Rc2

  • Clam Anti-virus Clamav 0.85

  • Clam Anti-virus Clamav 0.85.1

  • Clam Anti-virus Clamav 0.86

  • Clam Anti-virus Clamav 0.86 Rc1

  • Clam Anti-virus Clamav 0.86.1

  • Clam Anti-virus Clamav 0.86.2

  • Clam Anti-virus Clamav 0.87

  • Clam Anti-virus Clamav 0.87.1

  • Clam Anti-virus Clamav 0.88

  • Clam Anti-virus Clamav 0.88.1

  • Clam Anti-virus Clamav 0.88.3

  • Clam Anti-virus Clamav 0.88.4

  • Clam Anti-virus Clamav 0.88.5

  • Clam Anti-virus Clamav 0.88.6

  • Clam Anti-virus Clamav 0.88.7

  • Clam Anti-virus Clamav 0.90

  • Clam Anti-virus Clamav 0.90 Rc1.1

  • Clam Anti-virus Clamav 0.90 Rc2

  • Clam Anti-virus Clamav 0.90 Rc3

  • Clam Anti-virus Clamav 0.90.1

  • Clam Anti-virus Clamav 0.90.2

  • Clam Anti-virus Clamav 0.90rc1


References

CERT - TA08-260A

CONFIRM - https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1000

FEDORA - FEDORA-2008-5476

FEDORA - FEDORA-2008-6422

XF - clamav-petite-dos(43133)

VUPEN - ADV-2008-2584

VUPEN - ADV-2008-1855

SECTRACK - 1020305

BID - 29750

MLIST - [oss-security] 20080617 Re: CVE id request: Clamav

MLIST - [oss-security] 20080615 CVE id request: Clamav

MANDRIVA - MDVSA-2008:122

DEBIAN - DSA-1616

CONFIRM - http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html

CONFIRM - http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&path=/branches/0.93/libclamav/petite.c&rev=3886

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=605577&group_id=86638

GENTOO - GLSA-200808-07

SECUNIA - 31882

SECUNIA - 31576

SECUNIA - 31437

SECUNIA - 31206

SECUNIA - 31091

SECUNIA - 30967

SECUNIA - 30829

SECUNIA - 30785

SECUNIA - 30657

SUSE - SUSE-SR:2008:015

SUSE - SUSE-SR:2008:014

APPLE - APPLE-SA-2008-09-15

CONFIRM - http://kolab.org/security/kolab-vendor-notice-21.txt

SECUNIA - 31167

Related Patches

Apple 2008-09-15 Security Update 2008-006 (PPC)

Apple 2008-09-15 Security Update 2008-006 Server (PPC)

Apple 2008-09-15 Mac OS X 10.5.5 Update

Apple 2008-09-15 Mac OS X Server 10.5.5 Combo Update

Apple 2008-09-15 Mac OS X Server 10.5.5 Update

Apple 2008-09-15 Security Update 2008-006 (Intel)

Apple 2008-09-15 Mac OS X 10.5.5 Combo Update

Apple 2008-09-15 Security Update 2008-006 Server (Intel)


Last Updated: 27 May 2016 11:01:24