Описание
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
Ссылки
- ExploitPatchVendor Advisory
- ExploitVendor Advisory
- US Government Resource
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:clam_anti-virus:clamav:0.88:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.88.1:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04489
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
больше 19 лет назад
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
debian
больше 19 лет назад
Buffer overflow in the get_database function in the HTTP client in Fre ...
github
больше 3 лет назад
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
EPSS
Процентиль: 89%
0.04489
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other