Vulnerabilities > CVE-2006-5295 - Denial Of Service vulnerability in Clam Anti-Virus CHM Unpacker

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
clam-anti-virus
nessus
exploit available

Summary

Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service (scanning service crash) via a crafted Compressed HTML Help (CHM) file that causes ClamAV to "read an invalid memory location." This vulnerability is addressed in the following product release: Clam Anti-Virus, ClamAV, 0.88.5

Exploit-Db

descriptionClam AntiVirus <= 0.88.4 CHM Chunk Name Length DoS PoC. CVE-2006-5295. Dos exploits for multiple platform
idEDB-ID:2586
last seen2016-01-31
modified2006-10-17
published2006-10-17
reporterDamian Put
sourcehttps://www.exploit-db.com/download/2586/
titleClam AntiVirus <= 0.88.4 CHM Chunk Name Length DoS PoC

Nessus

  • NASL familyMandriva Local Security Checks
    NASL idMANDRAKE_MDKSA-2006-184.NASL
    descriptionAn integer overflow in previous versions of ClamAV could allow a remote attacker to cause a Denial of Service (scanning service crash) and execute arbitrary code via a Portable Executable (PE) file (CVE-2006-4182). Another vulnerability could allow a remote attacker to cause a DoS via a crafted compressed HTML (CHM) file that causes ClamAV to read an invalid memory location (CVE-2006-5295). These issues are corrected in ClamAV 0.88.5 which is provided with this update.
    last seen2020-06-01
    modified2020-06-02
    plugin id24569
    published2007-02-18
    reporterThis script is Copyright (C) 2007-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/24569
    titleMandrake Linux Security Advisory : clamav (MDKSA-2006:184)
  • NASL familySuSE Local Security Checks
    NASL idSUSE_SA_2006_060.NASL
    descriptionThe remote host is missing the patch for the advisory SUSE-SA:2006:060 (clamav). Two security problems have been found and fixed in the anti virus scan engine
    last seen2019-10-28
    modified2007-02-18
    plugin id24438
    published2007-02-18
    reporterThis script is Copyright (C) 2007-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/24438
    titleSUSE-SA:2006:060: clamav
  • NASL familySuSE Local Security Checks
    NASL idSUSE_CLAMAV-2179.NASL
    descriptionTwo security problems have been found in the antivirus scan engine
    last seen2020-06-01
    modified2020-06-02
    plugin id29395
    published2007-12-13
    reporterThis script is Copyright (C) 2007-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/29395
    titleSuSE 10 Security Update : clamav (ZYPP Patch Number 2179)
  • NASL familyDebian Local Security Checks
    NASL idDEBIAN_DSA-1196.NASL
    descriptionSeveral remote vulnerabilities have been discovered in the ClamAV malware scan engine, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-4182 Damian Put discovered a heap overflow error in the script to rebuild PE files, which could lead to the execution of arbitrary code. - CVE-2006-5295 Damian Put discovered that missing input sanitising in the CHM handling code might lead to denial of service.
    last seen2020-06-01
    modified2020-06-02
    plugin id22905
    published2006-10-25
    reporterThis script is Copyright (C) 2006-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/22905
    titleDebian DSA-1196-1 : clamav - several vulnerabilities
  • NASL familySuSE Local Security Checks
    NASL idSUSE_CLAMAV-2180.NASL
    descriptionTwo security problems have been found and fixed in the antivirus scan engine
    last seen2020-06-01
    modified2020-06-02
    plugin id27175
    published2007-10-17
    reporterThis script is Copyright (C) 2007-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/27175
    titleopenSUSE 10 Security Update : clamav (clamav-2180)