CVE-2007-6335

EPSS 40.4%

clamav - several vulnerabilities

Published: 12/20/2007Modified: 4/28/2026

Description

Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.

Affected packages (3)

Debian/clamavfrom 0, < 0.92~dfsg-1~volatile2
Debian/clamavfrom 0, < 0.90.1-3etch8
Debian/clamavfrom 0, < 0.91.2-4.0lenny1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6335