The parsing engine in ClamAV before 0.90.3 and 0.91 before 0.91rc1 allows remote attackers to bypass scanning via a RAR file with a header flag value of 10, which can be processed by WinRAR.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Clamav | Clam_anti-virus | 0.90 (including) | 0.90 (including) |
Clamav | Clam_anti-virus | 0.90.1 (including) | 0.90.1 (including) |
Clamav | Clam_anti-virus | 0.90.2 (including) | 0.90.2 (including) |
Clamav | Clam_anti-virus | 0.90_rc1.1 (including) | 0.90_rc1.1 (including) |
Clamav | Clam_anti-virus | 0.90_rc2 (including) | 0.90_rc2 (including) |
Clamav | Clam_anti-virus | 0.90_rc3 (including) | 0.90_rc3 (including) |
Clamav | Ubuntu | dapper | * |
Clamav | Ubuntu | devel | * |
Clamav | Ubuntu | edgy | * |
Clamav | Ubuntu | feisty | * |
Clamav | Ubuntu | gutsy | * |
Clamav | Ubuntu | hardy | * |
Clamav | Ubuntu | upstream | * |