CVE-2006-1989

EPSS 4.5%

clamav - buffer overflow

發布日:2006/5/1修改日:2026/4/28

描述

Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.

受影響套件(2)

Debian/clamavfrom 0, < 0.88.2
Debian/clamavfrom 0, < 0.84-2.sarge.9

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-1989