CVE-2007-1745

Name of the Vulnerable Software and Affected Versions: Clam AntiVirus (ClamAV) versions prior to 0.90.2

Description: The issue is related to the chm decompress stream function in libclamav/chmunpack.c, which leaks file descriptors when processing a crafted CHM file. The impact and attack vectors of this issue are not fully understood.

Recommendations: For versions prior to 0.90.2, update to version 0.90.2 or later to resolve the issue. As a temporary workaround, consider restricting the processing of CHM files until the update is applied.