ID de Prueba:	1.3.6.1.4.1.25623.1.0.807376
Categoría:	Denial of Service
Título:	ClamAV < 0.99.2 Crafted '7z' And 'Mew Packer' Parsing DoS Vulnerabilities - Linux
Resumen:	ClamAV is prone to multiple denial of service (DoS) vulnerabilities.
Descripción:	Summary: ClamAV is prone to multiple denial of service (DoS) vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - An error in parsing the crafted 7z files, which causes attacker to crash the application. - An error in parsing crafted mew packer, which causes attacker to crash the application. Vulnerability Impact: Successful exploitation will allow a remote attacker to crash the application. Affected Software/OS: ClamAV versions before 0.99.2. Solution: Update to version 0.99.2 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1372 BugTraq ID: 93221 http://www.securityfocus.com/bid/93221 https://foxglovesecurity.com/2016/06/13/finding-pearls-fuzzing-clamav/ http://www.ubuntu.com/usn/USN-3093-1 Common Vulnerability Exposure (CVE) ID: CVE-2016-1371 BugTraq ID: 93222 http://www.securityfocus.com/bid/93222
Copyright	Copyright (C) 2016 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.