CVE-2006-6481

Description

Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to cause a denial of service (stack overflow and application crash) by wrapping many layers of multipart/mixed content around a document, a different vulnerability than CVE-2006-5874 and CVE-2006-6406.

How to fix CVE-2006-6481

To remediate CVE-2006-6481, upgrade the affected package to a fixed version below.

• Debian/clamav—upgrade to 0.88.7-1 or later

Is CVE-2006-6481 being exploited?

Moderate — EPSS is 6.9%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 0.88.7-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2006-6481