Showing 1 - 3 of 3

CVE-2020-3350

Status Candidate

Overview

A vulnerability in the endpoint software of Cisco AMP for Endpoints and Clam AntiVirus could allow an authenticated, local attacker to cause the running software to delete arbitrary files on the system. The vulnerability is due to a race condition that could occur when scanning malicious files. An attacker with local shell access could exploit this vulnerability by executing a script that could trigger the race condition. A successful exploit could allow the attacker to delete arbitrary files on the system that the attacker would not normally have privileges to delete, producing system instability or causing the endpoint software to stop working.

Related Files

Ubuntu Security Notice USN-4435-2: Posted Jul 27, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4435-2 - USN-4435-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.; tags | advisory, remote, denial of service, vulnerability; systems | linux, ubuntu; advisories | CVE-2020-3327, CVE-2020-3350, CVE-2020-3481; SHA-256 | 4afe934b8629dfa16ec6c07cb7c59e43a30a773854c88c66c6f5b7e4c1346eff; Download | Favorite | View

Ubuntu Security Notice USN-4435-1: Posted Jul 27, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4435-1 - It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. It was discovered that ClamAV incorrectly handled scanning malicious files. A local attacker could possibly use this issue to delete arbitrary files. It was discovered that ClamAV incorrectly handled parsing EGG archives. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.; tags | advisory, remote, denial of service, arbitrary, local; systems | linux, ubuntu; advisories | CVE-2020-3327, CVE-2020-3350, CVE-2020-3481; SHA-256 | bdd994238e41940137543be49827bbffa97900a52196a21d57ae900f18beede5; Download | Favorite | View

Clam AntiVirus Toolkit 0.102.4: Posted Jul 16, 2020; Authored by Tomasz Kojm | Site clamav.net; Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a command-line scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.; Changes: Multiple security issues have been addressed that include symlink and denial of service attacks.; tags | virus; systems | unix; advisories | CVE-2020-3327, CVE-2020-3350, CVE-2020-3481; SHA-256 | eebd426a68020ecad0d2084b8c763e6898ccfd5febcae833d719640bb3ff391b; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 179 files
Ubuntu 58 files
Debian 26 files
LiquidWorm 11 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
E1.Coders 4 files
malvuln 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,014)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,227)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,501)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,439)
UNIX (9,391)
UnixWare (187)
Windows (6,649)
Other

CVE-2020-3350

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems