Metaeye Security Group » Clam AntiVirus RAR File Handling Denial Of Service Vulnerability.

Vendor: Clam AntiVirus (http://www.clamav.net)

Product: Clamav (libclamav)

Versions Affected: All before 0.91

Severity: Moderate

Issue

Clamav crashes due to processing of standard filters in RAR VM, while processing a
corrupted RAR file. Processing the corrupted file results in a null pointer deference.

Impact

Processing the corrupted file will result in crashing of clamscan application and
clamd daemon.

Fix

Upgrade to version 0.91.

PoC

http://www.metaeye.org/codes/corrupted.rar

Vendor Status

Reported: 25/06/2007
Fixed: 11/07/2007

References

1. Clamav bugzilla bug id 555.
2. Secunia advisory SA26038.
3. Bugtraq ID 24866.
4. CVE-2007-3725.

| by msg on July 11th, 2007 at 8:04 am | permanent link |


home advisories codes projects hunch archives contact rss2	• Clam AntiVirus RAR File Handling Denial Of Service Vulnerability. Vendor: Clam AntiVirus (http://www.clamav.net) Product: Clamav (libclamav) Versions Affected: All before 0.91 Severity: Moderate Issue Clamav crashes due to processing of standard filters in RAR VM, while processing a corrupted RAR file. Processing the corrupted file results in a null pointer deference. Impact Processing the corrupted file will result in crashing of clamscan application and clamd daemon. Fix Upgrade to version 0.91. PoC http://www.metaeye.org/codes/corrupted.rar Vendor Status Reported: 25/06/2007 Fixed: 11/07/2007 References 1. Clamav bugzilla bug id 555. 2. Secunia advisory SA26038. 3. Bugtraq ID 24866. 4. CVE-2007-3725. \| by msg on July 11th, 2007 at 8:04 am \| permanent link \|
[ © MSG ]