Vector: | Remote |
Severity: | High |
Patch: | Patched |
Impact: | Remote Code Execution (RCE) |
Software: | Clam AntiVirus (clamav) 0.x , vulnerable versions: <0.98.5 |
A remote code execution vulnerability was discovered in ClamAV "cli_scanpe()".
Buffer overflow vulnerability exists in the "cli_scanpe()" function (libclamav/pe.c). An attacker can cause a heap-based buffer overflow.
Solution:
For Clam AntiVirus (clamav) 0.x: Update to version 0.98.5.
Links:
- http://blog.clamav.net/2014/11/clamav-0985-has-been-released.html
- http://www.openwall.com/lists/oss-security/2014/11/21/12