The remote host is missing an update to clamav announced via advisory DSA 1238-1. Several remote vulnerabilities have been discovered in the Clam anti-virus toolkit. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2006-6406 Hendrik Weimer discovered that invalid characters in base64 encoded data may lead to bypass of scanning mechanisms. CVE-2006-6481 Hendrik Weimer discovered that deeply nested multipart/mime MIME data may lead to denial of service.

For the stable distribution (sarge) these problems have been fixed in version 0.84-2.sarge.13. For the upcoming stable distribution (etch) these problems have been fixed in version 0.88.7-1. For the unstable distribution (sid) these problems have been fixed in version 0.88.7-1. We recommend that you upgrade your clamav packages. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201238-1