CVE-2008-1387 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-1387
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-1387

Description: ClamAV before 0.93 allows remote attackers to cause a denial of service (CPU consumption) via a crafted ARJ archive, as demonstrated by the PROTOS GENOME test suite for Archive Formats.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/41822 SUSE http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.html SAID Secunia Advisory: SA31882 Secunia Advisory: SA30328 Secunia Advisory: SA31576 Secunia Advisory: SA30253 Secunia Advisory: SA29975 Secunia Advisory: SA29891 Secunia Advisory: SA29863 MISC http://www.ee.oulu.fi/research/ouspg/protos/testing/c10/archive/ http://int21.de/cve/CVE-2008-1387-clamav.html http://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:088 GENTOO http://security.gentoo.org/glsa/glsa-200805-19.xml FEDORA CONFIRM http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html http://kolab.org/security/kolab-vendor-notice-20.txt CERT http://www.us-cert.gov/cas/techalerts/TA08-260A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/490863/100/0/threaded BID 28784 28782 APPLE http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html

Return to the previous page.