CVE-2007-6595

ClamAV 0.92 - Arbitrary File Overwrite via Symlink Attack on Temporary Files

Title source: llm
STIX 2.1

Description

ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.

References (15)

Core 15
Core References
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2008:088
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/39335
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28949
Various Sources x_refsource_confirm
http://kolab.org/security/kolab-vendor-notice-19.txt
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1019148
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3501
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/31437
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29891
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2008/dsa-1497
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/27064
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0606
Third Party Advisory vendor-advisory x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200808-07.xml
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/39339
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/485631/100/0/threaded

Scores

EPSS 0.0041
EPSS Percentile 32.2%

Details

CWE
CWE-59
Status published
Products (1)
clam_anti-virus/clamav 0.92
Published Dec 31, 2007
Tracked Since Feb 18, 2026