ID 14207
Created Feb 27, 2007
Updated Apr 23, 2014
Severity dark-circle dark-circle dark-circle dark-circle dark-circle
Coverage switch-off-logo IPS (Regular DB)
switch-off-logo IPS (Extended DB)
Default Action pass
Active switch-off-logo
Affected OS Linux, BSD
Affected App Other

Legend

Active/Available switch-on-logo
InActive/Not Available switch-off-logo

Update History

Date Version Detail
2018-11-06 13.485

Threat Encyclopedia

Clam.AntiVirus.Win32.UPX.Heap.Overflow

description-logoDescription

It indicates a possible exploit of an integer overflow vulnerability in Clam AntiVirus (ClamAV).
This flaw is due to an integer overflow error in the PE header parser [libclamav/pe.c], which could be exploited by attackers to compromise a vulnerable system where the "ArchiveMaxFileSize" option has been disabled.

affected-products-logoAffected Products

Clam AntiVirus (ClamAV) versions prior to 0.88.1

Impact logoImpact

The execution of arbitrary code on the system.

recomended-action-logoRecommended Actions

Upgrade to Clam AntiVirus (ClamAV) version 0.88.1 :
http://sourceforge.net/projects/clamav/

CVE References

CVE-2006-1614

Telemetry logoTelemetry