ClamAV Hash Manager Off-By-One Denial Of Service Vulnerability (Win) Network Vulnerability

Summary

This host has ClamAV installed and is prone to denial of service vulnerability.

Impact

Successful exploitation will allow attackers to provide a message with specially-crafted hash signature in it, leading to denial of service (clamscan executable crash). Impact Level: Application

Solution

Upgrade to ClamAV 0.97.2 or later, For updates refer to http://www.clamav.net/lang/en/

Insight

The flaw is due to the way the hash manager of Clam AntiVirus scans messages with certain hashes.

Affected

ClamAV version prior to 0.97.2 (3.0.3.6870) on Windows.

References

http://secunia.com/advisories/45382
http://www.openwall.com/lists/oss-security/2011/07/26/3
http://xforce.iss.net/xforce/xfdb/68785

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-2721
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Adobe Reader 'AcroPDF.DLL' Denial of Service Vulnerability (Linux)
ClamAV Hash Manager Off-By-One Denial of Service Vulnerability (Win)
F-PROT AV 'ELF' Header Denial of Service Vulnerability
DB2 discovery service DOS
Asterisk RTP Text Frames Denial Of Service Vulnerability

Take action and discover your vulnerabilities