CVE-2007-0897

Related Files

Debian Linux Security Advisory 1263-1

Posted Mar 9, 2007

Authored by Debian | Site debian.org

Debian Security Advisory 1263-1 - Several remote vulnerabilities have been discovered in in the Clam anti-virus toolkit, which may lead to denial of service.

tags | advisory, remote, denial of service, vulnerability, virus

systems | linux, debian

advisories | CVE-2007-0897, CVE-2007-0898

SHA-256 | e6168e8619dfe7c52a80aef754ae195cf0d83fdefe22d25e6f40251552520f7f

Download | Favorite | View

Gentoo Linux Security Advisory 200703-3

Posted Mar 6, 2007

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200703-03 - An anonymous researcher discovered a file descriptor leak error in the processing of CAB archives and a lack of validation of the id parameter string used to create local files when parsing MIME headers. Versions less than 0.90 are affected.

tags | advisory, local

systems | linux, gentoo

advisories | CVE-2007-0897, CVE-2007-0898

SHA-256 | ee2f7987c5622a444e724df0a1937039cce5cef60caad53d51b3cff4af7e1eb5

Download | Favorite | View

Mandriva Linux Security Advisory 2007.043

Posted Feb 20, 2007

Authored by Mandriva | Site mandriva.com

Mandriva Security Advisory - Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service (file descriptor consumption and failed scans) via CAB archives with a cabinet header record length of zero, which causes a function to return without closing a file descriptor. Directory traversal vulnerability in clamd in Clam AntiVirus ClamAV before 0.90 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the id MIME header parameter in a multi-part message.

tags | advisory, remote, denial of service, arbitrary

systems | linux, mandriva

advisories | CVE-2007-0898, CVE-2007-0897

SHA-256 | 7269e67e1a6ed8ca07776bcaf1cd0cecf907d085d4b1fb098633457f219b2fc8

Download | Favorite | View

iDEFENSE Security Advisory 2007-02-15.1

Posted Feb 16, 2007

Authored by iDefense Labs | Site idefense.com

iDefense Security Advisory 02.15.07 - Remote exploitation of a resource consumption vulnerability in Clam AntiVirus' ClamAV allows attackers to degrade the service of the clamd scanner. The vulnerability specifically exists due to a file descriptor leak. When clam encounters a cabinet header with a record length of zero it will return from a function without closing a local file descriptor. This can be triggered multiple times, eventually using up all but three of its available file descriptors. This prevents clam from scanning most archives, including zip and tar files. iDefense has confirmed this vulnerability affects Clam AntiVirus ClamAV v0.90RC1.1. All versions prior to the 0.90 stable release are suspected to be vulnerable.

tags | advisory, remote, local

advisories | CVE-2007-0897

SHA-256 | d8e31c7705a616a2a5ad6c69a4a876c1303cbfaf185c8fb9e3597e3621a386da

Download | Favorite | View