Vulnerability-Lookup

CERTA-2005-AVI-279

Vulnerability from certfr_avis - Published: 2005-07-26 - Updated: 2005-07-29

None

Description

ClamAV est un logiciel antivirus libre (GPL).

Trois vulnérabilités ont été identifiées dans ce logiciel. Ces vulnérabilités pourraient être exploitées par un attaquant par l'envoi d'un mail malicieusement construit qui premettraient d'exécuter du code arbitraire à distance.

Solution

Mettre à jour le logiciel en passant à la version 0.86.2 :

http://sourceforge.net/project/showfiles.php?group_id=86638&release_id=344514

ClamAV version 0.86.1 et versions antérieures.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de mise à jour ClamAV	None	vendor-advisory
Bulletin de sécurité SUSE SUSE-SR:2005:018 du 28 juillet 2005 :	-	other
Site de l'éditeur de ClamAV :	-	other
Bulletin de sécurité FreeBSD du 25 juillet 2005 :	-	other
Bulletin de sécurité Gentoo GLSA 200507-25 du 26 juillet 2005 :	-	other
Bulletin de sécurité OpenBSD pour clamav du 27 juillet 2005 :	-	other
Bulletin de sécurité du site rem0te.com :	-	other
Bulletin de sécurité Mandriva MDKSA-2005:125 du 27 juillet 2005 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003eClamAV version 0.86.1 et versions  ant\u00e9rieures.\u003c/p\u003e",
  "content": "## Description\n\nClamAV est un logiciel antivirus libre (GPL).  \n\nTrois vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans ce logiciel. Ces\nvuln\u00e9rabilit\u00e9s pourraient \u00eatre exploit\u00e9es par un attaquant par l\u0027envoi\nd\u0027un mail malicieusement construit qui premettraient d\u0027ex\u00e9cuter du code\narbitraire \u00e0 distance.\n\n## Solution\n\nMettre \u00e0 jour le logiciel en passant \u00e0 la version 0.86.2 :\n\n    http://sourceforge.net/project/showfiles.php?group_id=86638\u0026release_id=344514\n",
  "cves": [],
  "initial_release_date": "2005-07-26T00:00:00",
  "last_revision_date": "2005-07-29T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SR:2005:018 du 28 juillet    2005 :",
      "url": "http://www.novell.com/linux/security/advisories/2005_18_sr.html"
    },
    {
      "title": "Site de l\u0027\u00e9diteur de ClamAV :",
      "url": "http://sourceforge.net/project/showfiles.php?release_id=344514"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 FreeBSD du 25 juillet 2005 :",
      "url": "http://www.vuxml.org/freebsd/pkg-clamav.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA 200507-25 du 26 juillet    2005 :",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200507-25.xml"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 OpenBSD pour clamav du 27 juillet 2005    :",
      "url": "http://www.vuxml.org/openbsd/pkg-clamav.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 du site rem0te.com :",
      "url": "http://www.rem0te.com/public/images/clamav.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2005:125 du 27 juillet    2005 :",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2005:125"
    }
  ],
  "reference": "CERTA-2005-AVI-279",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2005-07-26T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 Gentoo GLSA 200507-25.",
      "revision_date": "2005-07-27T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 Mandriva MDKSA-2005:125.",
      "revision_date": "2005-07-28T00:00:00.000000"
    },
    {
      "description": "ajout des r\u00e9f\u00e9rences aux bulletins de s\u00e9curit\u00e9 OpenBSD et SUSE SUSE-SR:2005:018.",
      "revision_date": "2005-07-29T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de commandes arbitraires \u00e0 distance"
    }
  ],
  "summary": null,
  "title": "Multiples Vuln\u00e9rabilit\u00e9 dans ClamAV",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de mise \u00e0 jour ClamAV",
      "url": null
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted