New Vulnerabilities in ClamAV

Published: 2007-12-31
Last Updated: 2007-12-31 13:51:03 UTC
by Toby Kohlenberg (Version: 1)
0 comment(s)

Roflek and Lolek of TK53 has published a couple new vulnerabilities in ClamAV. Specifically three vulnerabilities- a race condition, a way to bypass scanning in Base64 UUencoded files, and finally a failure in file existence checking that potentially allows an attacker to overwrite files. It's a good read, full details are here:

0 comment(s)


Diary Archives