2011-08-05 23:55:08 2017-08-29 03:29:32

Off-by-one error in the cli_hm_scan function in matcher-hash.c in libclamav in ClamAV before 0.97.2 allows remote attackers to cause a denial of service (daemon crash) via an e-mail message that is not properly handled during certain hash calculations.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL
ClamAV 0.71 ClamAV 0.86 Release Candidate 1 ClamAV 0.80 Release Candidate 3 ClamAV 0.80 Release Candidate 2 ClamAV 0.80 Release Candidate 4 ClamAV 0.70 ClamAV 0.80 Release Candidate 1 ClamAV 0.81 Release Candidate 1 ClamAV 0.88.4 ClamAV 0.88.5 ClamAV 0.88.6 ClamAV 0.88.7 ClamAV 0.88.1 ClamAV 0.88.2 ClamAV 0.75 ClamAV 0.88.3 ClamAV 0.80 Release Candidate ClamAV 0.88.7 p0 ClamAV 0.88.7 p1 ClamAV 0.90.1 p0 ClamAV 0.95 SRC2 ClamAV 0.85 ClamAV 0.84 ClamAV 0.95 SRC1 ClamAV 0.96 release candidate 2 ClamAV 0.83 ClamAV 0.96 release candidate 1 ClamAV 0.82 ClamAV 0.95.1 ClamAV 0.91rc2 ClamAV 0.95.2 ClamAV 0.95.3 ClamAV 0.68 ClamAV 0.81 ClamAV 0.90.1 ClamAV 0.90 rc2 ClamAV 0.80 Clamav 0.90.2 ClamAV 0.90rc1 ClamAV 0.90.3 ClamAV 0.91rc1 ClamAV 0.90 rc3 ClamAV 0.01 ClamAV 0.88 ClamAV 0.97 Release Candidate ClamAV 0.87 ClamAV 0.86 ClamAV 0.96 ClamAV 0.95 ClamAV 0.94 ClamAV 0.93 ClamAV 0.90 rc1.1 ClamAV 0.92 ClamAV 0.91 ClamAV 0.90 ClamAV 0.12 ClamAV 0.68.1 ClamAV 0.87.1 ClamAV 0.10 ClamAV 0.97 ClamAV 0.94.1 ClamAV 0.05 ClamAV 0.75.1 ClamAV 0.94.2 ClamAV 0.03 ClamAV 0.02 ClamAV 0.80 Release Candidate 3 ClamAV 0.93.1 ClamAV 0.94 rc1 ClamAV 0.23 ClamAV ClamAV 0.67-1 ClamAV 0.22 ClamAV 0.21 ClamAV 0.20 ClamAV 0.60p ClamAV 0.90.2 p0 ClamAV 0.15 ClamAV 0.86.1 ClamAV 0.14 ClamAV 0.13 ClamAV 0.86.2 ClamAV 0.93.2 ClamAV 0.93.3 ClamAV 0.97.1 ClamAV 0.24 ClamAV 0.92.1 ClamAV 0.52 ClamAV ClamAV 0.51 ClamAV ClamAV 0.3 ClamAV 0.85.1 ClamAV 0.84 Release Candidate 1 ClamAV 0.72 ClamAV 0.73 ClamAV 0.80 Release Candidate ClamAV 0.74 ClamAV 0.70 Release Candidate ClamAV 0.84 Release Candidate 2 ClamAV 0.95 SRC1 ClamAV 0.95 SRC2 ClamAV 0.65 ClamAV 0.96.5 ClamAV ClamAV 0.66 ClamAV 0.96.4 ClamAV 0.67 ClamAV 0.96.3 ClamAV 0.91.2 ClamAV 0.91.1 ClamAV 0.96.2 ClamAV 0.96.1 ClamAV 0.60 ClamAV 0.90.3 p1 ClamAV 0.92 p0 ClamAV 0.90.3 p0 ClamAV 0.14 pre ClamAV 0.53 ClamAV ClamAV 0.54 ClamAV 0.91.2 p0