Vulnerabilities > Clam Anti Virus > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-11-05 | CVE-2005-3303 | Buffer Overflow vulnerability in Clam Anti-Virus ClamAV FSG File Handling The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file. | 7.5 |
| 2005-10-14 | CVE-2005-3239 | Denial Of Service vulnerability in Clam Anti-Virus Clamav . The OLE2 unpacker in clamd in Clam AntiVirus (ClamAV) 0.87-1 allows remote attackers to cause a denial of service (segmentation fault) via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2_walk_property_tree function. | 7.8 |
| 2005-09-20 | CVE-2005-2920 | Buffer Overflow vulnerability in ClamAV UPX Compressed Executable Buffer overflow in libclamav/upx.c in Clam AntiVirus (ClamAV) before 0.87 allows remote attackers to execute arbitrary code via a crafted UPX packed executable. | 7.5 |
| 2005-08-03 | CVE-2005-2450 | Integer Overflow vulnerability in Clam Anti-Virus Clamav 0.85/0.85.1/0.86 Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and earlier allow remote attackers to gain privileges via a crafted e-mail message. | 7.5 |
| 2005-05-27 | CVE-2005-1795 | Improper Input Validation vulnerability in Clam Anti-Virus Clamav The filecopy function in misc.c in Clam AntiVirus (ClamAV) before 0.85, on Mac OS, allows remote attackers to execute arbitrary code via a virus in a filename that contains shell metacharacters, which are not properly handled when HFS permissions prevent the file from being deleted and ditto is invoked. | 7.5 |
| 2005-05-24 | CVE-2005-1711 | Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses from being detected. | 7.5 |
| 2003-12-15 | CVE-2003-0946 | Denial-Of-Service vulnerability in Clam Anti-Virus Clamav 0.60/0.60P Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 through 0.60p, and other versions before 0.65, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in the email address argument of a "MAIL FROM" command. | 7.5 |