ClamAV Remote Code Execution And Denial of Service Vulnerabilities

ClamAV is prone to a remote code-execution vulnerability and a denial-of-service vulnerability.

Successfully exploiting these issues may allow an attacker to execute arbitrary code in the context of affected application or cause denial-of-service conditions.

ClamAV versions prior to 0.97.8 are vulnerable.

NOTE: This BID initially referenced CVE-2013-2021. This issue is now described in BID 60118.


Privacy Statement
Copyright 2010, SecurityFocus