Test Kennung:	1.3.6.1.4.1.25623.1.0.807375
Kategorie:	Denial of Service
Titel:	ClamAV < 0.99.2 Crafted '7z' And 'Mew Packer' Parsing DoS Vulnerabilities - Windows
Zusammenfassung:	ClamAV is prone to multiple denial of service (DoS) vulnerabilities.
Beschreibung:	Summary: ClamAV is prone to multiple denial of service (DoS) vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - An error in parsing the crafted 7z files, which causes attacker to crash the application. - An error in parsing crafted mew packer, which causes attacker to crash the application. Vulnerability Impact: Successful exploitation will allow a remote attacker to crash the application. Affected Software/OS: ClamAV versions before 0.99.2. Solution: Update to version 0.99.2 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1372 BugTraq ID: 93221 http://www.securityfocus.com/bid/93221 https://foxglovesecurity.com/2016/06/13/finding-pearls-fuzzing-clamav/ http://www.ubuntu.com/usn/USN-3093-1 Common Vulnerability Exposure (CVE) ID: CVE-2016-1371 BugTraq ID: 93222 http://www.securityfocus.com/bid/93222
Copyright	Copyright (C) 2016 Greenbone Networks GmbH

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.