PT-2005-4114 · Clam Antivirus · Clamav

Published

2005-11-05

Updated

2024-06-15

CVE-2005-3303

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions ClamAV versions 0.80 through 0.87

Description The issue allows remote attackers to cause memory corruption and execute arbitrary code via a crafted FSG 1.33 file. This is due to a problem in the FSG unpacker (fsg.c) in Clam AntiVirus.

Recommendations For ClamAV versions 0.80 through 0.87, update to a version that contains a fix for this issue to prevent memory corruption and arbitrary code execution.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-3303

DSA-887-1

DTSA-21-1

OPENSUSE-SU-2024:10685-1

Affected Products

Clamav

PT-2005-4114 · Clam Antivirus · Clamav

CVE-2005-3303

Related Identifiers

Affected Products

References · 77