ClamAV 'find_stream_bounds()' Function Buffer Overflow Vulnerability Network Vulnerability

Summary

This host has ClamAV installed, and is prone to buffer overflow vulnerability.

Impact

Successful exploitation could allow attackers to execute arbitrary code on the system with clamd privileges or cause the application to crash. Impact Level: Application

Solution

Upgrade to ClamAV 0.96.3 or later, http://www.clamav.net/

Insight

The flaw exists due to a buffer overflow error in 'find_stream_bounds()' function in 'pdf.c' file within the libclamav.

Affected

ClamAV version before 0.96.3 on Linux

Severity

Classification

CVE CVE-2010-3434
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

ChaSen Buffer Overflow Vulnerability (Linux)
Cyrus IMAP Server 'split_wildmats()' Remote Buffer Overflow Vulnerability
Blazevideo HDTV Player PLF File Buffer Overflow Vulnerability
ClamAV 'find_stream_bounds()' function Buffer Overflow Vulnerability
Adobe Reader Multiple BOF Vulnerabilities - Jun09 (Linux)

Take action and discover your vulnerabilities