virus logo FortiClient Vulnerability

Security Vulnerabilities fixed in ClamAV 0.101.2

description-logoDescription

A vulnerability in the RAR file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of proper data and error-handling mechanisms when processing nested RAR files sent to an affected device. An attacker could exploit this vulnerability by sending a crafted RAR file to an affected device. An exploit could allow the attacker to view or create arbitrary files on the targeted system.

affected-products-logoAffected Applications

ClamAV

CVE References

CVE-2019-1785 CVE-2019-1786

Other References

https://security.gentoo.org/glsa/201904-12
ID 4041
Created Jan 20, 2022
Description
Updated		 Nov 07, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor ClamAV
Patch manual
Application ClamAV