Summary
The host is installed with ClamAV and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow attackers to cause a denial of service (crash) via vectors related to recursion level.
Impact Level: Application
Solution
Upgrade to ClamAV version 0.97.3 or later
For updates refer to http://www.clamav.net/lang/en/download/
Insight
The flaw is due to the way the bytecode engine handled recursion level when scanning an unpacked file.
Affected
ClamAV before 0.97.3 on Windows.
References
Updated on 2017-03-28
Severity
Classification
-
CVE CVE-2011-3627 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Adobe Flash Media Server Remote Denial of Service Vulnerability (August-2011)
- Beckhoff TwinCAT 'TCATSysSrv.exe' Network Packet Denial of Service Vulnerability
- Apple Safari Denial Of Service Vulnerability - Jul09
- Firefox Browser Libxul Memory Leak Remote DoS Vulnerability - Linux
- Apache Subversion 'mod_dav_svn' Module Multiple DoS Vulnerabilities