The %f feature in the VirusEvent directive in Clam AntiVirus daemon (clamd) before 0.70 allows local users to execute arbitrary commands via shell metacharacters in a file name.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Clamav | Clam_anti-virus | 0.51 (including) | 0.51 (including) |
| Clamav | Clam_anti-virus | 0.52 (including) | 0.52 (including) |
| Clamav | Clam_anti-virus | 0.53 (including) | 0.53 (including) |
| Clamav | Clam_anti-virus | 0.54 (including) | 0.54 (including) |
| Clamav | Clam_anti-virus | 0.60 (including) | 0.60 (including) |
| Clamav | Clam_anti-virus | 0.65 (including) | 0.65 (including) |
| Clamav | Clam_anti-virus | 0.67 (including) | 0.67 (including) |
| Clamav | Clam_anti-virus | 0.68 (including) | 0.68 (including) |
| Clamav | Clam_anti-virus | 0.68.1 (including) | 0.68.1 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=108066864608615\u0026w=2
- http://secunia.com/advisories/11253
- http://security.gentoo.org/glsa/glsa-200405-03.xml
- http://www.securityfocus.com/bid/10007
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15692
- http://marc.info/?l=bugtraq\u0026m=108066864608615\u0026w=2
- http://secunia.com/advisories/11253
- http://security.gentoo.org/glsa/glsa-200405-03.xml
- http://www.securityfocus.com/bid/10007
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15692