cve-2008-2713
Vulnerability from cvelistv5
Published
2008-06-16 21:00
Modified
2024-08-07 09:14
Severity ?
EPSS score ?
Summary
libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file that triggers an out-of-bounds read.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-07T09:14:14.572Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "31437", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/31437", }, { name: "APPLE-SA-2008-09-15", tags: [ "vendor-advisory", "x_refsource_APPLE", "x_transferred", ], url: "http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html", }, { name: "MDVSA-2008:122", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:122", }, { name: "TA08-260A", tags: [ "third-party-advisory", "x_refsource_CERT", "x_transferred", ], url: "http://www.us-cert.gov/cas/techalerts/TA08-260A.html", }, { name: "SUSE-SR:2008:015", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00006.html", }, { name: "30785", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/30785", }, { name: "ADV-2008-2584", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2008/2584", }, { name: "[oss-security] 20080615 CVE id request: Clamav", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2008/06/15/2", }, { name: "ADV-2008-1855", tags: [ "vdb-entry", "x_refsource_VUPEN", "x_transferred", ], url: "http://www.vupen.com/english/advisories/2008/1855/references", }, { name: "30967", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/30967", }, { name: "31882", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/31882", }, { name: "31091", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/31091", }, { name: "30657", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/30657", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://kolab.org/security/kolab-vendor-notice-21.txt", }, { name: "clamav-petite-dos(43133)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/43133", }, { name: "SUSE-SR:2008:014", tags: [ "vendor-advisory", "x_refsource_SUSE", "x_transferred", ], url: "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html", }, { name: "DSA-1616", tags: [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred", ], url: "http://www.debian.org/security/2008/dsa-1616", }, { name: "FEDORA-2008-5476", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00763.html", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1000", }, { name: "[oss-security] 20080617 Re: CVE id request: Clamav", tags: [ "mailing-list", "x_refsource_MLIST", "x_transferred", ], url: "http://www.openwall.com/lists/oss-security/2008/06/17/8", }, { name: "GLSA-200808-07", tags: [ "vendor-advisory", "x_refsource_GENTOO", "x_transferred", ], url: "http://security.gentoo.org/glsa/glsa-200808-07.xml", }, { name: "29750", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/29750", }, { name: "30829", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/30829", }, { name: "1020305", tags: [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred", ], url: "http://www.securitytracker.com/id?1020305", }, { name: "FEDORA-2008-6422", tags: [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00617.html", }, { name: "31167", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/31167", }, { name: "31576", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/31576", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&path=/branches/0.93/libclamav/petite.c&rev=3886", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://sourceforge.net/project/shownotes.php?release_id=605577&group_id=86638", }, { name: "31206", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/31206", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2008-04-28T00:00:00", descriptions: [ { lang: "en", value: "libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file that triggers an out-of-bounds read.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-08-07T12:57:01", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { name: "31437", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/31437", }, { name: "APPLE-SA-2008-09-15", tags: [ "vendor-advisory", "x_refsource_APPLE", ], url: "http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html", }, { name: "MDVSA-2008:122", tags: [ "vendor-advisory", "x_refsource_MANDRIVA", ], url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:122", }, { name: "TA08-260A", tags: [ "third-party-advisory", "x_refsource_CERT", ], url: "http://www.us-cert.gov/cas/techalerts/TA08-260A.html", }, { name: "SUSE-SR:2008:015", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00006.html", }, { name: "30785", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/30785", }, { name: "ADV-2008-2584", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2008/2584", }, { name: "[oss-security] 20080615 CVE id request: Clamav", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2008/06/15/2", }, { name: "ADV-2008-1855", tags: [ "vdb-entry", "x_refsource_VUPEN", ], url: "http://www.vupen.com/english/advisories/2008/1855/references", }, { name: "30967", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/30967", }, { name: "31882", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/31882", }, { name: "31091", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/31091", }, { name: "30657", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/30657", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://kolab.org/security/kolab-vendor-notice-21.txt", }, { name: "clamav-petite-dos(43133)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/43133", }, { name: "SUSE-SR:2008:014", tags: [ "vendor-advisory", "x_refsource_SUSE", ], url: "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html", }, { name: "DSA-1616", tags: [ "vendor-advisory", "x_refsource_DEBIAN", ], url: "http://www.debian.org/security/2008/dsa-1616", }, { name: "FEDORA-2008-5476", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00763.html", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1000", }, { name: "[oss-security] 20080617 Re: CVE id request: Clamav", tags: [ "mailing-list", "x_refsource_MLIST", ], url: "http://www.openwall.com/lists/oss-security/2008/06/17/8", }, { name: "GLSA-200808-07", tags: [ "vendor-advisory", "x_refsource_GENTOO", ], url: "http://security.gentoo.org/glsa/glsa-200808-07.xml", }, { name: "29750", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/29750", }, { name: "30829", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/30829", }, { name: "1020305", tags: [ "vdb-entry", "x_refsource_SECTRACK", ], url: "http://www.securitytracker.com/id?1020305", }, { name: "FEDORA-2008-6422", tags: [ "vendor-advisory", "x_refsource_FEDORA", ], url: "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00617.html", }, { name: "31167", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/31167", }, { name: "31576", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/31576", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&path=/branches/0.93/libclamav/petite.c&rev=3886", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://sourceforge.net/project/shownotes.php?release_id=605577&group_id=86638", }, { name: "31206", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/31206", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2008-2713", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file that triggers an out-of-bounds read.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "31437", refsource: "SECUNIA", url: "http://secunia.com/advisories/31437", }, { name: "APPLE-SA-2008-09-15", refsource: "APPLE", url: "http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html", }, { name: "http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html", refsource: "CONFIRM", url: "http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html", }, { name: "MDVSA-2008:122", refsource: "MANDRIVA", url: "http://www.mandriva.com/security/advisories?name=MDVSA-2008:122", }, { name: "TA08-260A", refsource: "CERT", url: "http://www.us-cert.gov/cas/techalerts/TA08-260A.html", }, { name: "SUSE-SR:2008:015", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00006.html", }, { name: "30785", refsource: "SECUNIA", url: "http://secunia.com/advisories/30785", }, { name: "ADV-2008-2584", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2008/2584", }, { name: "[oss-security] 20080615 CVE id request: Clamav", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2008/06/15/2", }, { name: "ADV-2008-1855", refsource: "VUPEN", url: "http://www.vupen.com/english/advisories/2008/1855/references", }, { name: "30967", refsource: "SECUNIA", url: "http://secunia.com/advisories/30967", }, { name: "31882", refsource: "SECUNIA", url: "http://secunia.com/advisories/31882", }, { name: "31091", refsource: "SECUNIA", url: "http://secunia.com/advisories/31091", }, { name: "30657", refsource: "SECUNIA", url: "http://secunia.com/advisories/30657", }, { name: "http://kolab.org/security/kolab-vendor-notice-21.txt", refsource: "CONFIRM", url: "http://kolab.org/security/kolab-vendor-notice-21.txt", }, { name: "clamav-petite-dos(43133)", refsource: "XF", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/43133", }, { name: "SUSE-SR:2008:014", refsource: "SUSE", url: "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html", }, { name: "DSA-1616", refsource: "DEBIAN", url: "http://www.debian.org/security/2008/dsa-1616", }, { name: "FEDORA-2008-5476", refsource: "FEDORA", url: "https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00763.html", }, { name: "https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1000", refsource: "CONFIRM", url: "https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1000", }, { name: "[oss-security] 20080617 Re: CVE id request: Clamav", refsource: "MLIST", url: "http://www.openwall.com/lists/oss-security/2008/06/17/8", }, { name: "GLSA-200808-07", refsource: "GENTOO", url: "http://security.gentoo.org/glsa/glsa-200808-07.xml", }, { name: "29750", refsource: "BID", url: "http://www.securityfocus.com/bid/29750", }, { name: "30829", refsource: "SECUNIA", url: "http://secunia.com/advisories/30829", }, { name: "1020305", refsource: "SECTRACK", url: "http://www.securitytracker.com/id?1020305", }, { name: "FEDORA-2008-6422", refsource: "FEDORA", url: "https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00617.html", }, { name: "31167", refsource: "SECUNIA", url: "http://secunia.com/advisories/31167", }, { name: "31576", refsource: "SECUNIA", url: "http://secunia.com/advisories/31576", }, { name: "http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&path=/branches/0.93/libclamav/petite.c&rev=3886", refsource: "CONFIRM", url: "http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&path=/branches/0.93/libclamav/petite.c&rev=3886", }, { name: "http://sourceforge.net/project/shownotes.php?release_id=605577&group_id=86638", refsource: "CONFIRM", url: "http://sourceforge.net/project/shownotes.php?release_id=605577&group_id=86638", }, { name: "31206", refsource: "SECUNIA", url: "http://secunia.com/advisories/31206", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2008-2713", datePublished: "2008-06-16T21:00:00", dateReserved: "2008-06-16T00:00:00", dateUpdated: "2024-08-07T09:14:14.572Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4C9A0FA4-A4AE-4C90-98DA-8AF5ABB03CE6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.20:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D0E9BC10-5F5B-499A-893C-1EEF6F1180B7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.21:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"06A9B47A-8FC3-4BD2-A55F-9150307619B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.22:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7068873F-E45D-4471-B55E-BF7B0E3AFEEC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.23:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"695F0967-1529-42DB-8978-8B9192F7F615\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.24:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"073BBAA9-7C7B-4D07-8943-7459DD2BAAC3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.51:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB72ED94-7832-43CF-81CF-27F88CAC6E91\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.52:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2C48C927-2D02-4B7E-82C3-0BBF29AAB24A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.53:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"802BFF6B-5D9F-49AE-B96A-86A85E0F1034\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.54:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F7B2943-BC22-4735-8AA5-AADBEA685FAF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.60:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C6257524-7FC5-40CA-9BDA-82B8565C5BEC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.60p:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"35EBA938-DC66-40EA-8C66-38296AB57B57\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.65:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"395AACCC-C20A-4BC1-BF62-D40FF71B7360\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.67:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0F52C121-B8B8-43A8-AFAB-E85474021919\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.68:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"659B4C39-0F0F-40C5-9B7E-0D00330611F2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.68.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7793F3D5-E93C-46C8-ADCA-EF60BF4EC3C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.70:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"508C140C-2F87-4270-85B0-00EA6678A344\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.71:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3033A4A2-47E9-434F-BA0A-0F2476A67899\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.72:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4680089D-DEFB-41E3-AFAF-6DA9252F2DCD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.73:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"307ED99C-32B8-4C0C-8C55-E2BA6EDB961F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.74:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEF4F0DE-DC05-4F06-BC2D-09BAEAB25184\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.75:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0C1EDFB4-B0C8-4832-BCA1-C35D28877581\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.75.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BF60319C-CFFB-47F4-BDCB-90A5D0FB4240\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.80:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4EF47B2A-4520-4872-987D-2EF88344ADB2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.80_rc1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"12A4541A-2560-482A-BAEA-275579B499B2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.80_rc2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9006F64F-D72B-49C4-9F51-8AD9273957B5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.80_rc3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A5698AB2-94DE-480D-9E55-C05871562B8C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.80_rc4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A44C0C8F-750B-4237-9E2F-1BEF67F2BCA5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.81:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FC31E071-6BB8-45FE-AA09-E7E459B549D2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.81_rc1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C4CBE9C9-A1DE-4C68-B84D-C735A9A700E3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.82:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"53D884A1-305C-416A-9851-3A7D875FDC47\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.83:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E58A6CBC-ED1C-430D-8F43-88694971A850\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.84:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E330A535-A376-4BFF-BB1B-31E83370FC02\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.84_rc1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3E389E1C-46A6-4B5C-9091-8AAE5FFDC4B8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.84_rc2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1ADBDEE-1421-42E5-8DE2-404087613B75\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.85:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EDF94B1E-E8D4-4952-9081-1254F335445D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.85.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8657268E-4C78-4565-9966-7329095A7905\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.86:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8D20F0D5-2291-4F24-94DB-180CDF926B93\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.86.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A0E2884A-615F-4063-8FB7-EC157C3EC07F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.86.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7BC41B7-272F-44BB-BD48-6C9231402526\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.86_rc1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0138546B-3704-45FB-8115-05C12F9935D7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.87:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D23F1D35-6073-49B0-8DD4-C58AEE2CC83C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.87.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D87DA1D8-59AC-4372-BBFC-ED8BC6603AAC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.88:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5F56722F-F61A-404B-B0B2-1C92C22D0436\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.88.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D00EBC44-B4AB-443F-A063-8C8CB64F5F94\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.88.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2DB68680-FA6D-4235-90DA-E3DF0E5BB666\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.88.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0E5BCBA5-0CE1-4112-8C3D-BAED9C5537B9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.88.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3908B34C-823E-47BA-8A64-23547D2AB027\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.88.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"557C5437-4B40-4E89-A23D-96B95829281D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.88.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A3394AD1-C667-46E7-82D3-E2E381CCC9FA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.90:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"142588F8-15C3-4288-BE7C-B2F7447BD60F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.90.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EC18418B-7477-436C-A24A-081701968DEF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.90.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A85C689-95E0-41F7-83D9-5A8B0AB42390\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.90_rc1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B116E9A-0646-4AD5-A531-C35124AB02DC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.90_rc2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3F3C25BA-72EF-4588-A90A-B323A3407FAD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.90_rc3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"01FDAEBC-0B2E-4F60-8B59-13A93B1AF206\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:clam_anti-virus:clamav:0.90rc1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E021DD71-1845-4899-BB87-8445147AD93F\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file that triggers an out-of-bounds read.\"}, {\"lang\": \"es\", \"value\": \"libclamav/petite.c de ClamAV versiones anteriores a 0.93.1 permite a atacantes remotos provocar una denegaci\\u00f3n de servicio a trav\\u00e9s de un fichero Petite manipulado que dispara una lectura fuera del l\\u00edmite.\"}]", id: "CVE-2008-2713", lastModified: "2024-11-21T00:47:31.943", metrics: "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}", published: "2008-06-16T21:41:00.000", references: "[{\"url\": \"http://kolab.org/security/kolab-vendor-notice-21.txt\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00006.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/30657\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/30785\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/30829\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/30967\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/31091\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/31167\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/31206\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/31437\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/31576\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/31882\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://security.gentoo.org/glsa/glsa-200808-07.xml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://sourceforge.net/project/shownotes.php?release_id=605577&group_id=86638\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&path=/branches/0.93/libclamav/petite.c&rev=3886\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.debian.org/security/2008/dsa-1616\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2008:122\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2008/06/15/2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2008/06/17/8\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/29750\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securitytracker.com/id?1020305\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.us-cert.gov/cas/techalerts/TA08-260A.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2008/1855/references\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/2584\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/43133\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00617.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00763.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1000\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://kolab.org/security/kolab-vendor-notice-21.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00006.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/30657\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/30785\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/30829\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/30967\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/31091\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/31167\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/31206\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/31437\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/31576\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/31882\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://security.gentoo.org/glsa/glsa-200808-07.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://sourceforge.net/project/shownotes.php?release_id=605577&group_id=86638\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&path=/branches/0.93/libclamav/petite.c&rev=3886\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2008/dsa-1616\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2008:122\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2008/06/15/2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2008/06/17/8\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/29750\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id?1020305\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.us-cert.gov/cas/techalerts/TA08-260A.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2008/1855/references\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2008/2584\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/43133\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00617.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00763.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1000\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]", sourceIdentifier: "cve@mitre.org", vulnStatus: "Modified", weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-399\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2008-2713\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2008-06-16T21:41:00.000\",\"lastModified\":\"2024-11-21T00:47:31.943\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"libclamav/petite.c in ClamAV before 0.93.1 allows remote attackers to cause a denial of service via a crafted Petite file that triggers an out-of-bounds read.\"},{\"lang\":\"es\",\"value\":\"libclamav/petite.c de ClamAV versiones anteriores a 0.93.1 permite a atacantes remotos provocar una denegación de servicio a través de un fichero Petite manipulado que dispara una lectura fuera del límite.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C9A0FA4-A4AE-4C90-98DA-8AF5ABB03CE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D0E9BC10-5F5B-499A-893C-1EEF6F1180B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06A9B47A-8FC3-4BD2-A55F-9150307619B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7068873F-E45D-4471-B55E-BF7B0E3AFEEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"695F0967-1529-42DB-8978-8B9192F7F615\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"073BBAA9-7C7B-4D07-8943-7459DD2BAAC3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.51:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB72ED94-7832-43CF-81CF-27F88CAC6E91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.52:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C48C927-2D02-4B7E-82C3-0BBF29AAB24A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.53:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"802BFF6B-5D9F-49AE-B96A-86A85E0F1034\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.54:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F7B2943-BC22-4735-8AA5-AADBEA685FAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.60:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6257524-7FC5-40CA-9BDA-82B8565C5BEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.60p:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35EBA938-DC66-40EA-8C66-38296AB57B57\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.65:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"395AACCC-C20A-4BC1-BF62-D40FF71B7360\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.67:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F52C121-B8B8-43A8-AFAB-E85474021919\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.68:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"659B4C39-0F0F-40C5-9B7E-0D00330611F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.68.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7793F3D5-E93C-46C8-ADCA-EF60BF4EC3C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.70:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"508C140C-2F87-4270-85B0-00EA6678A344\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.71:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3033A4A2-47E9-434F-BA0A-0F2476A67899\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.72:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4680089D-DEFB-41E3-AFAF-6DA9252F2DCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.73:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"307ED99C-32B8-4C0C-8C55-E2BA6EDB961F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.74:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEF4F0DE-DC05-4F06-BC2D-09BAEAB25184\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.75:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C1EDFB4-B0C8-4832-BCA1-C35D28877581\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.75.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BF60319C-CFFB-47F4-BDCB-90A5D0FB4240\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.80:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4EF47B2A-4520-4872-987D-2EF88344ADB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.80_rc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12A4541A-2560-482A-BAEA-275579B499B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.80_rc2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9006F64F-D72B-49C4-9F51-8AD9273957B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.80_rc3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5698AB2-94DE-480D-9E55-C05871562B8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.80_rc4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A44C0C8F-750B-4237-9E2F-1BEF67F2BCA5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.81:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC31E071-6BB8-45FE-AA09-E7E459B549D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.81_rc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4CBE9C9-A1DE-4C68-B84D-C735A9A700E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.82:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53D884A1-305C-416A-9851-3A7D875FDC47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.83:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E58A6CBC-ED1C-430D-8F43-88694971A850\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.84:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E330A535-A376-4BFF-BB1B-31E83370FC02\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.84_rc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E389E1C-46A6-4B5C-9091-8AAE5FFDC4B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.84_rc2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1ADBDEE-1421-42E5-8DE2-404087613B75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.85:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EDF94B1E-E8D4-4952-9081-1254F335445D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.85.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8657268E-4C78-4565-9966-7329095A7905\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.86:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D20F0D5-2291-4F24-94DB-180CDF926B93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.86.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0E2884A-615F-4063-8FB7-EC157C3EC07F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.86.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7BC41B7-272F-44BB-BD48-6C9231402526\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.86_rc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0138546B-3704-45FB-8115-05C12F9935D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.87:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D23F1D35-6073-49B0-8DD4-C58AEE2CC83C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.87.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D87DA1D8-59AC-4372-BBFC-ED8BC6603AAC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.88:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F56722F-F61A-404B-B0B2-1C92C22D0436\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.88.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D00EBC44-B4AB-443F-A063-8C8CB64F5F94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.88.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DB68680-FA6D-4235-90DA-E3DF0E5BB666\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.88.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E5BCBA5-0CE1-4112-8C3D-BAED9C5537B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.88.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3908B34C-823E-47BA-8A64-23547D2AB027\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.88.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"557C5437-4B40-4E89-A23D-96B95829281D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.88.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3394AD1-C667-46E7-82D3-E2E381CCC9FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.90:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"142588F8-15C3-4288-BE7C-B2F7447BD60F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.90.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC18418B-7477-436C-A24A-081701968DEF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.90.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A85C689-95E0-41F7-83D9-5A8B0AB42390\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.90_rc1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B116E9A-0646-4AD5-A531-C35124AB02DC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.90_rc2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F3C25BA-72EF-4588-A90A-B323A3407FAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.90_rc3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"01FDAEBC-0B2E-4F60-8B59-13A93B1AF206\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:clam_anti-virus:clamav:0.90rc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E021DD71-1845-4899-BB87-8445147AD93F\"}]}]}],\"references\":[{\"url\":\"http://kolab.org/security/kolab-vendor-notice-21.txt\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00006.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/30657\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/30785\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/30829\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/30967\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/31091\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/31167\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/31206\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/31437\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/31576\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/31882\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200808-07.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://sourceforge.net/project/shownotes.php?release_id=605577&group_id=86638\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&path=/branches/0.93/libclamav/petite.c&rev=3886\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2008/dsa-1616\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2008:122\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2008/06/15/2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2008/06/17/8\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/29750\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id?1020305\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA08-260A.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.vupen.com/english/advisories/2008/1855/references\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/2584\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/43133\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00617.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00763.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1000\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://kolab.org/security/kolab-vendor-notice-21.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00006.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/30657\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/30785\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/30829\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/30967\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/31091\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/31167\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/31206\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/31437\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/31576\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/31882\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://security.gentoo.org/glsa/glsa-200808-07.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://sourceforge.net/project/shownotes.php?release_id=605577&group_id=86638\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://svn.clamav.net/websvn/diff.php?repname=clamav-devel&path=/branches/0.93/libclamav/petite.c&rev=3886\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2008/dsa-1616\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2008:122\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2008/06/15/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2008/06/17/8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/29750\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1020305\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA08-260A.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.vupen.com/english/advisories/2008/1855/references\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2008/2584\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/43133\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00617.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00763.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1000\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}", }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.