Kaspersky Anti-Virus 2010 version 9.0.0.463 suffers from a denial of service vulnerability.
7ae0cfcd643b35679b0935fa72b27c7089e68d07020a0c1a2084c395b59bc687Secunia Security Advisory - Heurs has discovered a vulnerability in Kaspersky Anti-Virus 2010, which can be exploited by malicious, local users to cause a DoS (Denial of Service).
f1ef10529a5f49e2f7ef9544d5f6c1df788143bcc94f1c6806793d3dec00085fClam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
003e7a570932fdffbd19fa7a7996274fbfc93f890d26c3066a36eb824c906250This pdf has the Anti-virus PWN2RM Challenge results. An amusing read discussing how to disable McAfee, Norton, and various other AV software.
232bf4211083bfc95c523a4af38a1e65423009125b74c66afdafd26c6bd3968aImproper handling of a specially crafted RAR archive file by the CA Anti-Virus engine arclib component leads to heap corruption and allows the attacker to cause a denial of service or possibly further compromise the system.
68c74583d8c2259e62743fb500c3ba5a7a8e32c2b91f70c32aba0e9279bc5cbdDebian Linux Security Advisory 1906-1 - Security support for clamav, an anti-virus utility for Unix, has been discontinued for the stable distribution (lenny) and the oldstable distribution (etch). Clamav Upstream has stopped supporting the releases in etch and lenny. Also, it is not easily possible to receive signature updates for the virus scanner with our released versions anymore. We recommend that all clamav users consider switching to the version in debian-volatile, which receives regular updates and security support on a best effort basis.
0f4de8d25aeb1bb792fe27f5653a50c3ad4752748c0e10b20659914f8d142f55CA's support is alerting customers to multiple security risks associated with CA Anti-Virus Engine. Vulnerabilities exist in the arclib component that can allow a remote attacker to cause a denial of service, or to cause heap corruption and potentially further compromise a system. CA has issued fixes to address the vulnerabilities.
1dc4058c8e774be29fddef6f172c726958c3daac8818e3613e4ed1638ebe3c6fSecunia Security Advisory - A vulnerability has been reported in Kaspersky Anti-Virus and Kaspersky Internet Security, which can be exploited by malicious people to bypass certain security restrictions.
d5498cea971e2a05a424899d821228d4a0ab36aa7aae6b411a372398b2e613eeClam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
f5f2a5a9984fd1ade69a7c2cc78da2f5dc0c505f94ab58fb2aa6613399ab1c56The Avira Antivir Anti-Virus engine can by bypassed by specially crafted RAR, CAB, ZIP, and LH files.
b507728df20115d41c0d77dcddee65a95d9169e3affd2bae91bb1bf6aaa9fc62Whitepaper called Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs.
3f05f130e949b1a5fbd06be19a49f90f6ff2127726c983f09433195a7f4d92adDebian Security Advisory 1771-1 - Several vulnerabilities have been discovered in the ClamAV anti-virus toolkit. Attackers can cause a denial of service (crash) via a crafted EXE file that triggers a divide-by-zero error. Attackers can cause a denial of service (infinite loop) via a crafted tar file that causes (1) clamd and (2) clamscan to hang. Attackers can cause a denial of service (crash) via a crafted EXE file that crashes the UPack unpacker.
dd4582c7ce66daa9cb0edcf432b78f10bb534cdb0ba8461534b5101238db5c9cClam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
6161a0ffa988166cfe3c2afb3056b791f3f70285fc87f547612427bd57f63b7dClam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
4f126ecfd20086c452f25aeb6757a200f68e87da82aa39542520435e2f7d31a7The CA Anti-Virus engine contains multiple vulnerabilities that can allow a remote attacker to evade detection by the Anti-Virus engine by creating a malformed archive file in one of several common file archive formats.
944ae526a24c8cceb81b918075140aa5750f12966e49907a39066cac40a142ceSecunia Security Advisory - A vulnerability has been reported in Sophos Anti-Virus, which can be exploited by malicious people to cause a DoS (Denial of Service).
b69c1edda5f2e8cb8b2dc24ef0aad0094291afebffc6336ee5450f65f75881a4Secunia Security Advisory - A vulnerability has been reported in various Sophos Anti-Virus products, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
8b955f4da747ba5443c18cc098954aeef56a685b85afb6f4b81c135ad2231641Multiple Anti-Virus vendors suffer from a malicious webpage detection bypass vulnerability.
f9dfa7e4d1f5008192bc17bb6b43ec0be0a51b5cc1e9623349686dfec0b9b2c1Debian Security Advisory 1680-1 - Moritz Jodeit discovered that ClamAV, an anti-virus solution, suffers from an off-by-one-error in its VBA project file processing, leading to a heap-based buffer overflow and potentially arbitrary code execution (CVE-2008-5050).
5fef039bd5fe94fc3f5cd4e925d326a2dc6daffed4198f3b8139a06c7c0806baClam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
1aec7fecff375958d067aceeb9782d3ff0be7c13bed0eecf6240fb089f8d268cClam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
15cd3f5ed349f736b9926dd118d0b8edda7d58fe1f73118d4ffd21b3016f5deaDebian Security Advisory 1660-1 - Several denial-of-service vulnerabilities have been discovered in the ClamAV anti-virus toolkit. These include insufficient checking for out-of-memory conditions results in null pointer dereferences, and incorrect error handling logic leads to memory leaks and file descriptor leaks.
3a3e8273e0a97c927616f522b6334478668137e69c4b1447e26f6fa7a0715fefClam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a commandline scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.
ae188c18936ea9154eb6a85ea553c29f4349ee3e95457055fae5fe1b981af602ClamSAP consists of two C shared libraries that link between ClamAV and the Virus Scan Interface (VSI) of SAP (official name: NW-VSI). A SAP application can use the ClamAV engine to scan for malicious uploads in HTTP uploads, for example.
7b7a89ce2b6faf847dddb51487bbd1c34427976b52f2cac42496c18584edfb37ClamSAP consists of two C shared libraries that link between ClamAV and the Virus Scan Interface (VSI) of SAP (official name: NW-VSI). A SAP application can use the ClamAV engine to scan for malicious uploads in HTTP uploads, for example.
a579badec7e234710ee75cc8b2bf53bde89b620fea98e4179a88079f9f52bfd2
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed