Denial of Service : ClamAV < 0.95 Multiple Vulnerabilities

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.800556

Categoría: Denial of Service

Título: ClamAV < 0.95 Multiple Vulnerabilities - Windows

Resumen: ClamAV is prone to multiple vulnerabilities.

Descripción: Summary:
ClamAV is prone to multiple vulnerabilities.

Vulnerability Insight:
Multiple flaws are due to:

- Error in handling specially crafted RAR files which prevents the scanning of potentially
malicious files.

- Inadequate sanitation of files through a crafted TAR file causes clamd and clamscan to hang.

- 'libclamav/pe.c' allows remote attackers to cause a denial of service via a crafted EXE which
triggers a divide-by-zero error.

Vulnerability Impact:
Remote attackers may exploit this issue to inject malicious files
into the system which can bypass the scan engine and may cause denial of service.

Affected Software/OS:
ClamAV before version 0.95.

Solution:
Update to version 0.95 or later.

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-1241
http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html
BugTraq ID: 34344
http://www.securityfocus.com/bid/34344
Bugtraq: 20090402 [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass (Google Search)
http://www.securityfocus.com/archive/1/502366/100/0/threaded
http://www.mandriva.com/security/advisories?name=MDVSA-2009:097
http://blog.zoller.lu/2009/04/clamav-094-and-below-evasion-and-bypass.html
http://www.openwall.com/lists/oss-security/2009/04/07/6
http://secunia.com/advisories/36701
SuSE Security Announcement: SUSE-SR:2009:009 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
http://www.vupen.com/english/advisories/2009/0934
Common Vulnerability Exposure (CVE) ID: CVE-2009-1270
BugTraq ID: 34357
http://www.securityfocus.com/bid/34357
Debian Security Information: DSA-1771 (Google Search)
http://www.debian.org/security/2009/dsa-1771
http://osvdb.org/53461
http://secunia.com/advisories/34716
http://www.ubuntu.com/usn/usn-754-1
XForce ISS Database: clamav-untar-dos(49846)
https://exchange.xforce.ibmcloud.com/vulnerabilities/49846
Common Vulnerability Exposure (CVE) ID: CVE-2008-6680
XForce ISS Database: clamav-exe-dos(49845)
https://exchange.xforce.ibmcloud.com/vulnerabilities/49845

Copyright Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.800556
Categoría:	Denial of Service
Título:	ClamAV < 0.95 Multiple Vulnerabilities - Windows
Resumen:	ClamAV is prone to multiple vulnerabilities.
Descripción:	Summary: ClamAV is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - Error in handling specially crafted RAR files which prevents the scanning of potentially malicious files. - Inadequate sanitation of files through a crafted TAR file causes clamd and clamscan to hang. - 'libclamav/pe.c' allows remote attackers to cause a denial of service via a crafted EXE which triggers a divide-by-zero error. Vulnerability Impact: Remote attackers may exploit this issue to inject malicious files into the system which can bypass the scan engine and may cause denial of service. Affected Software/OS: ClamAV before version 0.95. Solution: Update to version 0.95 or later. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1241 http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html BugTraq ID: 34344 http://www.securityfocus.com/bid/34344 Bugtraq: 20090402 [TZO-05-2009] Clamav 0.94 and below - Evasion /bypass (Google Search) http://www.securityfocus.com/archive/1/502366/100/0/threaded http://www.mandriva.com/security/advisories?name=MDVSA-2009:097 http://blog.zoller.lu/2009/04/clamav-094-and-below-evasion-and-bypass.html http://www.openwall.com/lists/oss-security/2009/04/07/6 http://secunia.com/advisories/36701 SuSE Security Announcement: SUSE-SR:2009:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html http://www.vupen.com/english/advisories/2009/0934 Common Vulnerability Exposure (CVE) ID: CVE-2009-1270 BugTraq ID: 34357 http://www.securityfocus.com/bid/34357 Debian Security Information: DSA-1771 (Google Search) http://www.debian.org/security/2009/dsa-1771 http://osvdb.org/53461 http://secunia.com/advisories/34716 http://www.ubuntu.com/usn/usn-754-1 XForce ISS Database: clamav-untar-dos(49846) https://exchange.xforce.ibmcloud.com/vulnerabilities/49846 Common Vulnerability Exposure (CVE) ID: CVE-2008-6680 XForce ISS Database: clamav-exe-dos(49845) https://exchange.xforce.ibmcloud.com/vulnerabilities/49845
Copyright	Copyright (C) 2009 Greenbone AG