SecuritySpace - CVE-2005-1923

Price/Feature Summary | Order | New Vulnerabilities | Confidentiality | Vulnerability Search

Vulnerability Search		Search 61204 CVE descriptions and 32582 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2005-1923

Description: The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read.

Test IDs: 1.3.6.1.4.1.25623.1.0.55066 1.3.6.1.4.1.25623.1.0.54182

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2005-1923
http://www.idefense.com/application/poi/display?id=275&type=vulnerabilities
Debian Security Information: DSA-737 (Google Search)
http://www.debian.org/security/2005/dsa-737

New User Registration
Email:

UserID:

Passwd:

Please email me your monthly newsletters, informing the latest services, improvements & surveys.

Please email me a vulnerability test announcement whenever a new test is added.

Privacy

Registered User Login

UserID:

Passwd:

Forgot userid or passwd?

Email/Userid:

CVE ID:	CVE-2005-1923
Description:	The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read.
Test IDs:	1.3.6.1.4.1.25623.1.0.55066 1.3.6.1.4.1.25623.1.0.54182
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2005-1923 http://www.idefense.com/application/poi/display?id=275&type=vulnerabilities Debian Security Information: DSA-737 (Google Search) http://www.debian.org/security/2005/dsa-737