Test Kennung:	1.3.6.1.4.1.25623.1.0.900546
Kategorie:	Denial of Service
Titel:	ClamAV Denial of Service Vulnerability (Windows)
Zusammenfassung:	The host is installed with ClamAV and is prone to Denial of Service; Vulnerability.
Beschreibung:	Summary: The host is installed with ClamAV and is prone to Denial of Service Vulnerability. Vulnerability Insight: - Error in CLI_ISCONTAINED macro in libclamav/others.h while processing malformed files packed with UPack. - Buffer overflow error in cli_url_canon() function in libclamav/phishcheck.c while handling specially crafted URLs. Vulnerability Impact: Attackers can exploit this issue by executing arbitrary code via a crafted URL in the context of affected application, and can cause denial of service. Affected Software/OS: ClamAV before 0.95.1 on Windows. Solution: Upgrade to ClamAV 0.95.1. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	BugTraq ID: 34446 Common Vulnerability Exposure (CVE) ID: CVE-2009-1371 http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html http://www.securityfocus.com/bid/34446 Debian Security Information: DSA-1771 (Google Search) http://www.debian.org/security/2009/dsa-1771 http://www.mandriva.com/security/advisories?name=MDVSA-2009:097 http://osvdb.org/53602 http://www.securitytracker.com/id?1022028 http://secunia.com/advisories/34612 http://secunia.com/advisories/34654 http://secunia.com/advisories/34716 http://secunia.com/advisories/36701 http://www.ubuntu.com/usn/usn-756-1 http://www.vupen.com/english/advisories/2009/0985 Common Vulnerability Exposure (CVE) ID: CVE-2009-1372 http://osvdb.org/53603
Copyright	Copyright (C) 2009 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.