ClamAV Remote Code Execution And Denial of Service Vulnerabilities
ClamAV is prone to a remote code-execution vulnerability and a denial-of-service vulnerability.
Successfully exploiting these issues may allow an attacker to execute arbitrary code in the context of affected application or cause denial-of-service conditions.
ClamAV versions prior to 0.97.8 are vulnerable.
NOTE: This BID initially referenced CVE-2013-2021. This issue is now described in BID 60118.