ClamAV Hash Manager Off-By-One Denial Of Service Vulnerability (Win) Network Vulnerability

Summary

This host has ClamAV installed and is prone to denial of service vulnerability.

Impact

Successful exploitation will allow attackers to provide a message with specially-crafted hash signature in it, leading to denial of service (clamscan executable crash). Impact Level: Application

Solution

Upgrade to ClamAV 0.97.2 or later, For updates refer to http://www.clamav.net/lang/en/

Insight

The flaw is due to the way the hash manager of Clam AntiVirus scans messages with certain hashes.

Affected

ClamAV version prior to 0.97.2 (3.0.3.6870) on Windows.

References

http://secunia.com/advisories/45382
http://www.openwall.com/lists/oss-security/2011/07/26/3
http://xforce.iss.net/xforce/xfdb/68785

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-2721

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Apple Safari URI NULL Pointer Dereference DoS Vulnerability (Win)
Comodo Internet Security Denial of Service Vulnerability-05
Beckhoff TwinCAT 'TCATSysSrv.exe' Network Packet Denial of Service Vulnerability
Denial of Service vulnerability in AVG Anti-Virus (Linux)
avast! AntiVirus Multiple BOF Vulnerabilities (Linux)

ClamAV Hash Manager Off-By-One Denial of Service Vulnerability (Win)

Take action and discover your vulnerabilities