Описание
The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 0.88.2-1ubuntu1.3 |
| devel | released | 0.91.2-3ubuntu1 |
| edgy | released | 0.88.4-1ubuntu2.1 |
| feisty | released | 0.90.2-0ubuntu1.3 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
2.6 Low
CVSS2
Связанные уязвимости
The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read.
The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, an ...
The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read.
EPSS
2.6 Low
CVSS2