ClamAV Remote Denial Of Service Vulnerability Network Vulnerability

Summary

This host has ClamAV installed, and is prone to denial of service vulnerability.

Impact

Successful exploitation will cause remote attackers to crash the daemon via a specially crafted JPEG file. Impact Level: Application

Solution

Upgrade to ClamAV 0.94.2 http://www.clamav.net/

Insight

The application fails to validate user input passed to cli_check_jpeg_exploit, jpeg_check_photoshop, and jpeg_check_photoshop_8bim functions in special.c file.

Affected

ClamAV before 0.94.2 on Linux

References

http://www.openwall.com/lists/oss-security/2008/12/01/8

Updated on 2017-03-28

Severity

Classification

CVE CVE-2008-5314

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Asterisk RTP Text Frames Denial Of Service Vulnerability
Adobe Reader 'AcroPDF.DLL' Denial of Service Vulnerability (Mac OS X)
CUPS IPP Packets Processing Denial of Service Vulnerability
DB2 DOS
COWON Media Center JetAudio .wav File Denial Of Service Vulnerability

ClamAV Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities