CVE-2006-1615 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-1615
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1615

Description: Multiple format string vulnerabilities in the logging code in Clam AntiVirus (ClamAV) before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized properly.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/25661 TRUSTIX http://www.trustix.org/errata/2006/0020 SUSE http://lists.suse.com/archive/suse-security-announce/2006-Apr/0002.html SAID Secunia Advisory: SA19570 Secunia Advisory: SA19534 Secunia Advisory: SA19536 Secunia Advisory: SA19608 Secunia Advisory: SA19564 Secunia Advisory: SA19567 Secunia Advisory: SA20077 Secunia Advisory: SA23719 OSVDB 24458 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:067 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200604-06.xml DEBIAN http://www.debian.org/security/2006/dsa-1024 CONFIRM http://up2date.astaro.com/2006/05/low_up2date_6202.html http://sourceforge.net/project/shownotes.php?release_id=407078&group_id=86638 CERT http://www.us-cert.gov/cas/techalerts/TA06-132A.html BID 17388 17951 APPLE http://lists.apple.com/archives/security-announce/2006/May/msg00003.html

Return to the previous page.