• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

ClamAV Multiple Insecure File Handling and Scanner Bypass Vulnerabilities

ClamAV is prone to multiple vulnerabilities because it handles files in an insecure way and because it fails to scan certain files.

A successful attack may allow malicious users to perform symbolic-link attacks or to bypass scanning. Exploits may aid in further attacks.

ClamAV 0.92 is vulnerable to these issues; other versions may also be affected.