CVE-2007-6335 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-6335
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-6335

Description: Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/39119 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00002.html ST 1019112 SAID Secunia Advisory: SA28176 Secunia Advisory: SA28117 Secunia Advisory: SA28278 Secunia Advisory: SA28153 Secunia Advisory: SA28421 Secunia Advisory: SA28412 Secunia Advisory: SA28587 Secunia Advisory: SA29420 MILW0RM http://www.milw0rm.com/exploits/4862 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:003 IDEFENSE http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=634 GENTOO http://security.gentoo.org/glsa/glsa-200712-20.xml FEDORA DEBIAN http://www.debian.org/security/2007/dsa-1435 CONFIRM http://docs.info.apple.com/article.html?artnum=307562 BID 26927 APPLE http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

Return to the previous page.