Vulnerabilities > Clamav
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-05-12 | CVE-2015-2222 | Resource Management Errors vulnerability in multiple products ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted petite packed file. | 5.0 |
| 2015-05-12 | CVE-2015-2221 | Resource Management Errors vulnerability in multiple products ClamAV before 0.98.7 allows remote attackers to cause a denial of service (infinite loop) via a crafted y0da cryptor file. | 5.0 |
| 2015-05-12 | CVE-2015-2170 | Resource Management Errors vulnerability in multiple products The upx decoder in ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted file. | 5.0 |
| 2015-02-03 | CVE-2015-1463 | Code vulnerability in multiple products ClamAV before 0.98.6 allows remote attackers to cause a denial of service (crash) via a crafted petite packer file, related to an "incorrect compiler optimization." | 5.0 |
| 2015-02-03 | CVE-2015-1462 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted upx packer file, related to a "heap out of bounds condition." | 7.5 |
| 2015-02-03 | CVE-2015-1461 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted (1) Yoda's crypter or (2) mew packer file, related to a "heap out of bounds condition." | 7.5 |
| 2015-02-03 | CVE-2014-9328 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products ClamAV before 0.98.6 allows remote attackers to have unspecified impact via a crafted upack packer file, related to a "heap out of bounds condition." | 7.5 |
| 2014-12-01 | CVE-2014-9050 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Clamav Heap-based buffer overflow in the cli_scanpe function in libclamav/pe.c in ClamAV before 0.98.5 allows remote attackers to cause a denial of service (crash) via a crafted y0da Crypter PE file. | 5.0 |
| 2014-12-01 | CVE-2013-6497 | Code vulnerability in Clamav clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service (crash) as demonstrated by the jwplayer.js file. | 2.1 |
| 2013-05-13 | CVE-2013-2021 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products pdf.c in ClamAV 0.97.1 through 0.97.7 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted length value in an encrypted PDF file. | 4.3 |