0.60P

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

clam-anti-virus

NVD

Published: 2003-12-15

Updated: 2016-10-18

Summary

Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 through 0.60p, and other versions before 0.65, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in the email address argument of a "MAIL FROM" command.

Vulnerable Configurations

Part	Description	Count
Application	Clam_Anti-Virus Clam Anti Virus Clamav 0.60 Clam Anti Virus Clamav 0.60P	2

References

http://marc.info/?l=bugtraq&m=106867135830683&w=2
http://sourceforge.net/project/shownotes.php?release_id=197038