OpenBSD VuXML: Documenting security issues in the OpenBSD Ports & Packages Collection

clamav -- heap overflow in the UPX code

Affected packages
clamav < 0.88

Details

VuXML ID 8e8a1166-8432-11da-899e-00065bd5b0b6
Discovery 2006-01-10
Entry 2006-01-10

A vulnerability has been reported in ClamAV, which potentially can be exploited by malicious people with an unknown impact.

The vulnerability is caused due to an unspecified boundary error in "libclamav/upx.c". This can potentially be exploited to cause a heap-based buffer overflow via a specially-crafted UPX packed file.

[source]

References

CVE Name CVE-2006-0162
URL http://secunia.com/advisories/18379

Copyright © 2003-2005 Jacques Vidrine, Robert Nagy, and contributors.
Please see the source of this document for full copyright information.