|
Mandriva- Advisories MDKSA-2006:184: Updated clamav packages fix vulnerabilities
Advisories MDKSA-2006:184: Updated clamav packages fix vulnerabilities
An integer overflow in previous versions of ClamAV could allow a remote
attacker to cause a Denial of Service (scanning service crash) and
execute arbitrary code via a Portable Executable (PE) file
(CVE-2006-4182).
Another vulnerability could allow a remote attacker to cause a DoS via
a crafted compressed HTML (CHM) file that causes ClamAV to read an
invalid memory location (CVE-2006-5295).
These issues are corrected in ClamAV 0.88.5 which is provided with this
update.
http://mandrivausers.org/index.php?showtopic=35998
Array
Tue, 17 Oct 2006 23:06:28 +0000
|
10-23-2006, 09:42 AM
Posted
It appears you have not yet registered with our community
which limits what you can do & see. It's Free To register, please click here.
Linear Mode
