Описание
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
Ссылки
- ExploitPatchVendor Advisory
- ExploitVendor Advisory
- US Government Resource
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:clam_anti-virus:clamav:0.88:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.88.1:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04489
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
почти 20 лет назад
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
debian
почти 20 лет назад
Buffer overflow in the get_database function in the HTTP client in Fre ...
github
почти 4 года назад
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
EPSS
Процентиль: 89%
0.04489
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other