Vulnerabilities > Clam Anti Virus > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-12-31 | CVE-2007-6595 | Link Following vulnerability in Clam Anti-Virus Clamav 0.92 ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled. | 2.1 |
| 2007-06-07 | CVE-2007-3024 | Multiple Unspecified vulnerability in ClamAV libclamav/others.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files. | 2.1 |
| 2005-07-05 | CVE-2005-1923 | Unspecified vulnerability in Clam Anti-Virus Clamav The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read. | 2.6 |
| 2005-06-29 | CVE-2005-2056 | Quantum Decompressor Denial Of Service vulnerability in Clam Anti-Virus Clamav 0.85/0.85.1/0.86 The Quantum archive decompressor in Clam AntiVirus (ClamAV) before 0.86.1 allows remote attackers to cause a denial of service (application crash) via a crafted Quantum archive. | 2.6 |
| 2004-12-31 | CVE-2004-1909 | Remote Denial Of Service vulnerability in Clam Anti-Virus Clamav 0.65/0.67 Claim Anti-Virus (ClamAV) 0.68 and earlier allows remote attackers to cause a denial of service (crash) via certain RAR archives, such as those generated by the Beagle/Bagle worm. | 2.6 |