CVE Vulnerabilities

CVE-2007-6335

Published: Dec 20, 2007 | Modified: Sep 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.

Affected Software

Name Vendor Start Version End Version
Clamav Clam_anti-virus * 0.92 (including)
Clamav Ubuntu dapper *
Clamav Ubuntu edgy *
Clamav Ubuntu feisty *
Clamav Ubuntu gutsy *
Clamav Ubuntu upstream *

References