blob: 381fe1d54d9b0c1c63c83cef75bd9200e5ff1e28 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
|
source: clamav
date: November 3rd, 2005
author: Micah Anderson
vuln-type: Denial of service
problem-scope: remote
debian-specific: no
cve: CVE-2005-3239
testing-fix: 0.87.1-0etch.1
sid-fix: 0.87.1
upgrade: apt-get upgrade
Multiple security holes were found in clamav:
CVE-2005-3239
The OLE2 unpacker allows remote attackers to cause a denial of service
by sending a DOC file with an invalid property tree, triggering
an infinite recursion.
A possible denial of service has been found in
libclamav/tnef.c (IDEF1169)
A possible debian of service has been found in
libclamav/mspack/cabd.c (IDEF1180)
Buffer size calculation could be by-passed due to a vulnerability
in libclamav/fsg.c (ZDI-CAN-004)
|