HomePentest-Tools.com Logo

ClamAV < 0.95.1 Multiple DoS Vulnerabilities - Windows CVE-2009-1371CVE-2009-1372

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

ClamAV is prone to multiple denial of service (DoS) vulnerabilities.

Risk description

- Error in CLI_ISCONTAINED macro in libclamav/others.h while processing malformed files packed with UPack. - Buffer overflow error in cli_url_canon() function in libclamav/phishcheck.c while handling specially crafted URLs. Attackers can exploit this issue by executing arbitrary code via a crafted URL in the context of affected application, and can cause denial of service.

Recommendation

Update to version 0.95.1 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Apr 23, 2009
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available