CVE-2007-3024

EPSS 0.06%

發布日:2007/6/7修改日:2026/4/28

描述

libclamav/others.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files.

受影響套件(1)

Debian/clamavfrom 0, < 0.90.3-1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-3024