CVE-2007-6595

EPSS 0.05%

clamav - several vulnerabilities

發布日:2007/12/31修改日:2026/4/28

也稱為:DEBIAN-CVE-2007-6595

描述

ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.

受影響套件(2)

Debian/clamavfrom 0, < 0.92.1~dfsg-1
Debian/clamavfrom 0, < 0.90.1dfsg-3etch10

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6595