The parsing engine in ClamAV before 0.90.3 and 0.91 before 0.91rc1 allows remote attackers to bypass scanning via a RAR file with a header flag value of 10, which can be processed by WinRAR.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Clamav | Clam_anti-virus | 0.90.1 | 0.90.1 |
Clamav | Clam_anti-virus | 0.90 | 0.90 |
Clamav | Clam_anti-virus | 0.90.2 | 0.90.2 |
Clamav | Clam_anti-virus | 0.90_rc1.1 | 0.90_rc1.1 |
Clamav | Clam_anti-virus | 0.90_rc2 | 0.90_rc2 |
Clamav | Clam_anti-virus | 0.90_rc3 | 0.90_rc3 |