CVE-2007-6335

EPSS 40.4%

clamav - several vulnerabilities

發布日:2007/12/20修改日:2026/3/9

也稱為:DEBIAN-CVE-2007-6335DTSA-101-1

描述

Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.

受影響套件(3)

Debian/clamavfrom 0, < 0.92~dfsg-1~volatile2
Debian/clamavfrom 0, < 0.90.1-3etch8
Debian/clamavfrom 0, < 0.91.2-4.0lenny1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6335