PT-2006-7016 · Clam Antivirus · Clamav

Hendrik Weimer

Published

2006-12-10

Updated

2018-10-17

CVE-2006-6406

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Clam AntiVirus (ClamAV) version 0.88.6

Description The issue allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file. This can be demonstrated using the EICAR test file.

Recommendations For Clam AntiVirus (ClamAV) version 0.88.6, update to a newer version that includes a fix for this issue to prevent attackers from bypassing virus detection.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-6406

DSA-1238-1

Affected Products

Clamav

PT-2006-7016 · Clam Antivirus · Clamav

CVE-2006-6406

Related Identifiers

Affected Products

References · 17