PT-2005-2684 · Cisco+2 · Clamav+3

Published

2005-05-24

Updated

2008-09-05

CVE-2005-1711

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Gibraltar Firewall versions 2.2 and earlier

Description The issue arises when using the ClamAV update to 0.81 for Squid, as it utilizes a defunct ClamAV method to scan memory for viruses. This method does not return an error code, which prevents viruses from being detected.

Recommendations For Gibraltar Firewall versions 2.2 and earlier, consider updating the ClamAV method to a version that returns an error code and properly detects viruses. As a temporary workaround, restrict the use of the ClamAV update to 0.81 for Squid until a proper fix is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-1711

Affected Products

Clamav

Gibraltar Firewall

Squid

Squid Cache

PT-2005-2684 · Cisco+2 · Clamav+3

CVE-2005-1711

Related Identifiers

Affected Products

References · 3