CVE-2008-1835

Опубликовано: 16 апр. 2008

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:clam_anti-virus:clamav:*:*:*:*:*:*:*:*

Версия до 0.92.1 (включая)

cpe:2.3:a:clam_anti-virus:clamav:0.15:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.20:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.21:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.22:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.23:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.24:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.51:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.52:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.53:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.54:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.60:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.60p:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.65:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.67:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.68:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.68.1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.70:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.71:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.72:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.73:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.74:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.75:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.75.1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.80:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.80_rc1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.80_rc2:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.80_rc3:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.80_rc4:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.81:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.81_rc1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.82:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.83:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.84:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.84_rc1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.84_rc2:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.85:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.85.1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.86:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.86.1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.86.2:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.86_rc1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.87:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.87.1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.88:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.88.1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.88.3:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.88.4:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.88.5:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.88.6:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.88.7:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.90:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.90.1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.90.2:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.90_rc1.1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.90_rc2:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.90_rc3:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.90rc1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.91:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.91.1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.91.2:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.91rc1:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.91rc2:*:*:*:*:*:*:*

cpe:2.3:a:clam_anti-virus:clamav:0.92:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01807

Низкий

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2008-1835

ubuntu

больше 17 лет назад

ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar.

CVE-2008-1835

redhat

больше 17 лет назад

ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar.

CVE-2008-1835

debian

больше 17 лет назад

ClamAV before 0.93 allows remote attackers to bypass the scanning engi ...

GHSA-xrjm-v355-frfj

github

больше 3 лет назад

ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar.

EPSS

Процентиль: 82%

0.01807

Низкий

5 Medium

CVSS2

Дефекты

CWE-20