Rapid7 Vulnerability & Exploit Database

SUSE-SA:2007:033: clamav 0.90.3

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

SUSE-SA:2007:033: clamav 0.90.3

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

06/06/2007

Created

07/25/2018

Added

11/26/2007

Modified

11/18/2015

Description

unsp.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 does not properly calculate the end of a certain buffer, with unknown impact and remote attack vectors.

Solution(s)

References

https://attackerkb.com/topics/cve-2007-2650
24316
24358
CVE - 2007-2650
CVE - 2007-3023
CVE - 2007-3024
DSA-1320
36908
SUSE-SA:2007:033
http://article.gmane.org/gmane.comp.security.virus.clamav.devel/2853
http://kolab.org/security/kolab-vendor-notice-15.txt
http://lurker.clamav.net/message/20070418.111144.0df6c5d3.en.html
http://lurker.clamav.net/message/20070530.224918.5c64abc4.en.html
http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog
http://www.debian.org/security/2007/dsa-1320
http://www.frsirt.com/english/advisories/2007/1776
http://www.mandriva.com/security/advisories?name=MDKSA-2007:115
http://www.novell.com/linux/security/advisories/2007_33_clamav.html
http://www.trustix.org/errata/2007/0020/
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=517

Advanced vulnerability management analytics and reporting.

Key Features

Lightweight Endpoint Agent
Live Dashboards
Real Risk Prioritization
IT-Integrated Remediation Projects
Cloud, Virtual, and Container Assessment
Integrated Threat Feeds
Easy-to-Use RESTful API
Automation-Assisted Patching
Automated Containment

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;