CVE-2006-1614

EPSS 28.2%

clamav - heap overflow

Published: 4/6/2006Modified: 4/28/2026

Description

Integer overflow in the cli_scanpe function in the PE header parser (libclamav/pe.c) in Clam AntiVirus (ClamAV) before 0.88.1, when ArchiveMaxFileSize is disabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code.

Affected packages (2)

Debian/clamavfrom 0, < 0.88.1-1
Debian/clamavfrom 0, < 0.84-2.sarge.8

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-1614