Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2008-5050

Опубликовано: 13 нояб. 2008
Источник: ubuntu
Приоритет: low
CVSS2: 9.3

Описание

Off-by-one error in the get_unicode_name function (libclamav/vba_extract.c) in Clam Anti-Virus (ClamAV) before 0.94.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow.

РелизСтатусПримечание
dapper

released

0.92.1~dfsg2-1.1~dapper3.2
devel

not-affected

gutsy

released

0.92.1~dfsg2-1.1~gutsy3.1ubuntu1
hardy

released

0.92.1~dfsg2-1.1ubuntu0.3
intrepid

released

0.94.dfsg.1-1ubuntu0.1
upstream

released

0.94.1

Показывать по

Ссылки на источники

9.3 Critical

CVSS2

Связанные уязвимости

nvd логотип

CVE-2008-5050

nvd
около 17 лет назад

Off-by-one error in the get_unicode_name function (libclamav/vba_extract.c) in Clam Anti-Virus (ClamAV) before 0.94.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow.

debian логотип

CVE-2008-5050

debian
около 17 лет назад

Off-by-one error in the get_unicode_name function (libclamav/vba_extra ...

github логотип

GHSA-594g-rvq4-vvxr

github
больше 3 лет назад

Off-by-one error in the get_unicode_name function (libclamav/vba_extract.c) in Clam Anti-Virus (ClamAV) before 0.94.1 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-based buffer overflow.

9.3 Critical

CVSS2