Test Kennung:	1.3.6.1.4.1.25623.1.0.100830
Kategorie:	Denial of Service
Titel:	ClamAV < 0.96.3 'find_stream_bounds()' PDF File Processing DoS Vulnerability - Windows
Zusammenfassung:	ClamAV is prone to a denial of service (DoS) vulnerability.
Beschreibung:	Summary: ClamAV is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The flaw exists due to a buffer overflow error in 'find_stream_bounds()' function in 'pdf.c' file within the libclamav. Vulnerability Impact: Successful exploitation could allow attackers to execute arbitrary code on the system with clamd privileges or cause the application to crash. Affected Software/OS: ClamAV versions before 0.96.3. Solution: Update to version 0.96.3 or later. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3434 http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html http://www.openwall.com/lists/oss-security/2010/09/22/1 http://www.openwall.com/lists/oss-security/2010/09/27/6 http://www.openwall.com/lists/oss-security/2010/09/28/3 http://www.openwall.com/lists/oss-security/2010/09/28/5 SuSE Security Announcement: SUSE-SR:2010:020 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html http://www.vupen.com/english/advisories/2010/2455
Copyright	Copyright (C) 2010 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.