Clam Anti-Virus ClamAV UPX Compressed PE File Heap Buffer Overflow Vulnerability

Bugtraq ID: 19381
Class: Boundary Condition Error
CVE: CVE-2006-4018
Remote: Yes
Local: No
Published: Aug 07 2006 12:00AM
Updated: Jan 16 2007 11:00PM
Credit: Damian Put <pucik@overflow.pl> discovered this issue.
Vulnerable: Trustix Secure Linux 3.0
Trustix Secure Linux 2.2
S.u.S.E. Linux Professional 10.0 OSS
S.u.S.E. Linux Professional 10.0
S.u.S.E. Linux Professional 9.3 x86_64
S.u.S.E. Linux Professional 9.3
S.u.S.E. Linux Professional 9.2 x86_64
S.u.S.E. Linux Professional 9.2
S.u.S.E. Linux Professional 10.1
S.u.S.E. Linux Personal 10.0 OSS
S.u.S.E. Linux Personal 9.3 x86_64
S.u.S.E. Linux Personal 9.3
S.u.S.E. Linux Personal 9.2 x86_64
S.u.S.E. Linux Personal 9.2
S.u.S.E. Linux Personal 10.1
S.u.S.E. Linux Enterprise Server 9
S.u.S.E. Linux Enterprise Server 10
+ Linux kernel 2.6.5
Mandriva Linux Mandrake 2006.0 x86_64
Mandriva Linux Mandrake 2006.0
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
Gentoo Linux
Debian Linux 3.1
Clam Anti-Virus ClamAV 0.88.3
Clam Anti-Virus ClamAV 0.88.2
Not Vulnerable: Clam Anti-Virus ClamAV 0.88.4


 

Privacy Statement
Copyright 2010, SecurityFocus