Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-364: ClamAV Vulnerabilities

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-364: ClamAV Vulnerabilities
# 1  
Old 08-20-2008
S-364: ClamAV Vulnerabilities
A vulnerability in the ClamAV anti-virus toolkit's parsing of Petite-packed Win32 executables. The weakness leads to an invalid memory access, and could enable an attacker to crash clamav by supplying a maliciously crafted Petite-compressed binary for scanning. The risk is MEDIUM. In some configurations, such as when ClamAV is used in combination with mail servers, this could cause a system to "fail open," facilitating a follow-on viral attack.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

2 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Script for clamav help

Hi there all, I am writing a script to run clamscan and email me the results, everything is working fine still it comes to mailing me the results. Any and all help is much welcomed. #!/bin/sh # # Script Written by Jonathan Wood # Varables to change mailrecp="mail@home.jwservices.co.nz" ... (4 Replies)
Discussion started by: jonnowood
4 Replies

2. UNIX and Linux Applications

ClamAV/other AV. Possible to make portable?

Hey guys/gals, I work with a large amount of servers, and was just curious if it is possible to make a linux AV app, portable. What i mean is, I go to a user's home directory and do something like ./clamavscan (I suppose an alias for clamscan..), and it scans the user's home directory for... (2 Replies)
Discussion started by: Rhije
2 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

clamav::config

ClamAV::Config(3pm)					User Contributed Perl Documentation				       ClamAV::Config(3pm)

NAME

       ClamAV::Config - A Perl class providing configuration information for Perl modules related to ClamAV

VERSION

       0.11

SYNOPSIS

	   use ClamAV::Config;

	   # ClamAV base configuration:
	   ClamAV::Config->config_dir;
	   ClamAV::Config->clamd_config_file;

	   # clamd run-time configuration:
	   ClamAV::Config->clamd_config;
	   ClamAV::Config->clamd_option($option);

DESCRIPTION

       This class provides configuration information for Perl modules related to the ClamAV virus scanner, e.g. installation specific file system
       paths and run-time configuration options.

   ClamAV base configuration
       The following ClamAV base configuration information is provided as class methods:

       config_dir
	   The base configuration directory of ClamAV.

       clamd_config_file
	   The absolute file name of the clamd configuration file.

   clamd run-time configuration
       The following clamd run-time configuration information is provided as class methods:

       clamd_config
	   Returns all clamd run-time configuration options as a hash reference.

       clamd_option($option)
	   Returns the value of the specified clamd run-time configuration option.

SEE ALSO

       For AVAILABILITY, SUPPORT, and LICENSE information, see ClamAV::Client.

AUTHOR

       Julian Mehnle <julian@mehnle.net>

perl v5.14.2							    2012-01-17						       ClamAV::Config(3pm)