Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6845

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-6845
Last Modified 02 Jul 2009 12:00:00
Published 02 Jul 2009 06:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6845

Summary

The unpack feature in ClamAV 0.93.3 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a corrupted LZH file.

Vulnerable Systems

Application

  • Clamav 0.01

  • Clamav 0.02

  • Clamav 0.03

  • Clamav 0.05

  • Clamav 0.10

  • Clamav 0.12

  • Clamav 0.13

  • Clamav 0.14

  • Clamav 0.15

  • Clamav 0.20

  • Clamav 0.21

  • Clamav 0.22

  • Clamav 0.23

  • Clamav 0.24

  • Clamav 0.3

  • Clamav 0.51

  • Clamav 0.52

  • Clamav 0.53

  • Clamav 0.54

  • Clamav 0.60

  • Clamav 0.60p

  • Clamav 0.65

  • Clamav 0.66

  • Clamav 0.67

  • Clamav 0.67-1

  • Clamav 0.68

  • Clamav 0.68.1

  • Clamav 0.70

  • Clamav 0.71

  • Clamav 0.72

  • Clamav 0.73

  • Clamav 0.74

  • Clamav 0.75

  • Clamav 0.75.1

  • Clamav 0.80

  • Clamav 0.81

  • Clamav 0.82

  • Clamav 0.83

  • Clamav 0.84

  • Clamav 0.85

  • Clamav 0.85.1

  • Clamav 0.86

  • Clamav 0.86.1

  • Clamav 0.86.2

  • Clamav 0.87

  • Clamav 0.87.1

  • Clamav 0.88

  • Clamav 0.88.1

  • Clamav 0.88.2

  • Clamav 0.88.3

  • Clamav 0.88.4

  • Clamav 0.88.5

  • Clamav 0.88.6

  • Clamav 0.88.7

  • Clamav 0.88.7 P0

  • Clamav 0.88.7 P1

  • Clamav 0.90

  • Clamav 0.90.1

  • Clamav 0.90.1 P0

  • Clamav 0.90.2

  • Clamav 0.90.2 P0

  • Clamav 0.90.3

  • Clamav 0.90.3 P0

  • Clamav 0.90.3 P1

  • Clamav 0.91

  • Clamav 0.91.1

  • Clamav 0.91.2

  • Clamav 0.91.2 P0

  • Clamav 0.92

  • Clamav 0.92 P0

  • Clamav 0.92.1

  • Clamav 0.93

  • Clamav 0.93.1

  • Clamav 0.93.2

  • Clamav 0.93.3


References

BID - 32752

BUGTRAQ - 20081210 [IVIZ-08-011] ClamAV lzh unpacking segmentation fault

MISC - http://www.ivizsecurity.com/security-advisory-iviz-sr-08011.html

OSVDB - 51963


Last Updated: 27 May 2016 10:49:22