Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
[ GLSA 200601-07 ] ClamAV: Remote execution of arbitrary code
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index News & Announcements
View previous topic :: View next topic  
Author Message
GLSA
Veteran
Veteran


Joined: 12 May 2004
Posts: 1547

PostPosted: Fri Jan 13, 2006 7:26 am    Post subject: [ GLSA 200601-07 ] ClamAV: Remote execution of arbitrary cod Reply with quote

Gentoo Linux Security Advisory

Title: ClamAV: Remote execution of arbitrary code (GLSA 200601-07)
Severity: high
Exploitable: remote
Date: January 13, 2006
Bug(s): #118459
ID: 200601-07

Synopsis


ClamAV is vulnerable to a buffer overflow which may lead to remote
execution of arbitrary code.


Background


ClamAV is a GPL virus scanner.


Affected Packages

Package: app-antivirus/clamav
Vulnerable: < 0.88
Unaffected: >= 0.88
Architectures: All supported architectures


Description


Zero Day Initiative (ZDI) reported a heap buffer overflow
vulnerability. The vulnerability is due to an incorrect boundary check
of the user-supplied data prior to copying it to an insufficiently
sized memory buffer. The flaw occurs when the application attempts to
handle compressed UPX files.


Impact


For example by sending a maliciously crafted UPX file into a mail
server that is integrated with ClamAV, a remote attacker's supplied
code could be executed with escalated privileges.


Workaround


There is no known workaround at this time.


Resolution


All ClamAV users should upgrade to the latest version:
Code:
# emerge --sync
    # emerge --ask --oneshot --verbose ">=app-antivirus/clamav-0.88"


References

CVE-2006-0162


Last edited by GLSA on Wed May 04, 2011 4:21 am; edited 3 times in total
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index News & Announcements All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum