This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
APP:CLAMAV-UPX-OF-HTTP
|
Severity |
Major
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
APP
|
Keywords |
ClamAV UPX File Handling Buffer Overflow (HTTP)
|
Release Date |
2010/09/09
|
Update Number |
1769
|
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
APP: ClamAV UPX File Handling Buffer Overflow (HTTP)
This signature detects attempts to exploit a known vulnerability in ClamAV. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the application.
Extended Description
ClamAV is prone to a remote buffer-overflow vulnerability. This condition occurs when the program processes malformed UPX-compressed executables.
Successful exploitation may result in the execution of arbitrary code in the context of the application.
Affected Products
- Clam_anti-virus clamav 0.51.0
- Clam_anti-virus clamav 0.52.0
- Clam_anti-virus clamav 0.53.0
- Clam_anti-virus clamav 0.54.0
- Clam_anti-virus clamav 0.60.0
- Clam_anti-virus clamav 0.65.0
- Clam_anti-virus clamav 0.67.0
- Clam_anti-virus clamav 0.68.0
- Clam_anti-virus clamav 0.68.0 -1
- Clam_anti-virus clamav 0.70.0
- Clam_anti-virus clamav 0.75.1
- Clam_anti-virus clamav 0.80.0
- Clam_anti-virus clamav 0.80.0 Rc1
- Clam_anti-virus clamav 0.80.0 Rc2
- Clam_anti-virus clamav 0.80.0 Rc3
- Clam_anti-virus clamav 0.80.0 Rc4
- Clam_anti-virus clamav 0.81.0
- Clam_anti-virus clamav 0.82.0
- Clam_anti-virus clamav 0.83.0
- Clam_anti-virus clamav 0.84.0
- Clam_anti-virus clamav 0.84.0 Rc1
- Clam_anti-virus clamav 0.84.0 Rc2
- Clam_anti-virus clamav 0.85.0
- Clam_anti-virus clamav 0.85.1
- Clam_anti-virus clamav 0.86.0
- Clam_anti-virus clamav 0.86.0 .1
- Clam_anti-virus clamav 0.86.2
- Conectiva linux 10.0.0
- Trustix secure_linux 2.2.0
- Trustix secure_linux 3.0.0
References