CVE-2008-1835

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2008-1835
ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References
Link Resource
http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.html
http://secunia.com/advisories/29891
http://secunia.com/advisories/30328
http://secunia.com/advisories/31576
http://secunia.com/advisories/31882
http://security.gentoo.org/glsa/glsa-200805-19.xml
http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html
http://www.mandriva.com/security/advisories?name=MDVSA-2008:088
http://www.securityfocus.com/bid/28784
http://www.us-cert.gov/cas/techalerts/TA08-260A.html US Government Resource
http://www.vupen.com/english/advisories/2008/2584
https://exchange.xforce.ibmcloud.com/vulnerabilities/41874
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=541
http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.html
http://secunia.com/advisories/29891
http://secunia.com/advisories/30328
http://secunia.com/advisories/31576
http://secunia.com/advisories/31882
http://security.gentoo.org/glsa/glsa-200805-19.xml
http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html
http://www.mandriva.com/security/advisories?name=MDVSA-2008:088
http://www.securityfocus.com/bid/28784
http://www.us-cert.gov/cas/techalerts/TA08-260A.html US Government Resource
http://www.vupen.com/english/advisories/2008/2584
https://exchange.xforce.ibmcloud.com/vulnerabilities/41874
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=541
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:clam_anti-virus:clamav:*:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.15:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.20:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.21:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.22:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.23:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.24:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.51:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.52:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.53:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.54:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.60:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.60p:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.65:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.67:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.68:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.68.1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.70:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.71:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.72:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.73:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.74:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.75:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.75.1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.80:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc2:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc3:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc4:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.81:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.81_rc1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.82:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.83:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.84:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.84_rc1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.84_rc2:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.85:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.85.1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.86:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.86.1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.86.2:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.86_rc1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.87:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.87.1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.88:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.88.1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.88.3:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.88.4:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.88.5:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.88.6:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.88.7:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.90:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.90.1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.90.2:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.90_rc1.1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.90_rc2:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.90_rc3:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.90rc1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.91:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.91.1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.91.2:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.91rc1:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.91rc2:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.92:*:*:*:*:*:*:*
History

21 Nov 2024, 00:45

Type Values Removed Values Added
References () http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html - () http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html -
References () http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.html - () http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.html -
References () http://secunia.com/advisories/29891 - () http://secunia.com/advisories/29891 -
References () http://secunia.com/advisories/30328 - () http://secunia.com/advisories/30328 -
References () http://secunia.com/advisories/31576 - () http://secunia.com/advisories/31576 -
References () http://secunia.com/advisories/31882 - () http://secunia.com/advisories/31882 -
References () http://security.gentoo.org/glsa/glsa-200805-19.xml - () http://security.gentoo.org/glsa/glsa-200805-19.xml -
References () http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html - () http://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.html -
References () http://www.mandriva.com/security/advisories?name=MDVSA-2008:088 - () http://www.mandriva.com/security/advisories?name=MDVSA-2008:088 -
References () http://www.securityfocus.com/bid/28784 - () http://www.securityfocus.com/bid/28784 -
References () http://www.us-cert.gov/cas/techalerts/TA08-260A.html - US Government Resource () http://www.us-cert.gov/cas/techalerts/TA08-260A.html - US Government Resource
References () http://www.vupen.com/english/advisories/2008/2584 - () http://www.vupen.com/english/advisories/2008/2584 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/41874 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/41874 -
References () https://wwws.clamav.net/bugzilla/show_bug.cgi?id=541 - () https://wwws.clamav.net/bugzilla/show_bug.cgi?id=541 -
Information

Published : 2008-04-16 16:05

Updated : 2024-11-21 00:45

NVD link : CVE-2008-1835

Mitre link : CVE-2008-1835

CVE.ORG link : CVE-2008-1835

JSON object : View

Products Affected

clam_anti-virus

  • clamav
CWE
CWE-20

Improper Input Validation


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024