CVE-2008-5314

ClamAV < 0.94.2 - Denial of Service via Crafted JPEG File

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5314. PoCs published by ilja van sprundel.

AI-analyzed exploit summary This exploit triggers a recursive stack overflow in ClamAV's JPEG parsing code by creating a malformed JPEG file with nested thumbnails, causing a segmentation fault and crashing the application. The PoC generates a file that forces ClamAV to recursively scan thumbnails without bounds, exhausting stack memory.

Description

Stack consumption vulnerability in libclamav/special.c in ClamAV before 0.94.2 allows remote attackers to cause a denial of service (daemon crash) via a crafted JPEG file, related to the cli_check_jpeg_exploit, jpeg_check_photoshop, and jpeg_check_photoshop_8bim functions.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ilja van sprundel · cdosmultiple

https://www.exploit-db.com/exploits/7330

View Code ZIP pw:eip

This exploit triggers a recursive stack overflow in ClamAV's JPEG parsing code by creating a malformed JPEG file with nested thumbnails, causing a segmentation fault and crashing the application. The PoC generates a file that forces ClamAV to recursively scan thumbnails without bounds, exhausting stack memory.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: ClamAV 0.93.3, 0.94, and likely older versions

No auth needed

Prerequisites: Ability to write a file to the target system · ClamAV installed and configured to scan the file

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (24)

Core 24

Core References

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/usn-684-1

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id?1021296

Vendor Advisory x_refsource_confirm

http://support.apple.com/kb/HT3438

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/32936

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/7330

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/33195

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/33937

Third Party Advisory vendor-advisory x_refsource_debian

http://www.debian.org/security/2008/dsa-1680

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/32926

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2008/3311

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/33016

Mailing List vendor-advisory x_refsource_apple

http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html

Various Sources mailing-list x_refsource_mlist

http://lurker.clamav.net/message/20081126.150241.55b1e092.en.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://osvdb.org/50363

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-200812-21.xml

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/46985

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2009/0422

Mailing List mailing-list x_refsource_mlist

http://www.openwall.com/lists/oss-security/2008/12/01/8

Vendor Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2008:239

Product x_refsource_confirm

http://sourceforge.net/project/shownotes.php?group_id=86638&release_id=643134

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00003.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/32555

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/33317

Exploit x_refsource_confirm

https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1266

Scores

EPSS 0.0820

EPSS Percentile 94.1%

Details

CWE

CWE-399

Status published

Products (41)

clam_anti-virus/clamav 0.70

clam_anti-virus/clamav 0.71

clam_anti-virus/clamav 0.72

clam_anti-virus/clamav 0.73

clam_anti-virus/clamav 0.74

clam_anti-virus/clamav 0.75

clam_anti-virus/clamav 0.75.1

clam_anti-virus/clamav 0.80 (5 CPE variants)

clam_anti-virus/clamav 0.81 (2 CPE variants)

clam_anti-virus/clamav 0.82

... and 31 more

Published Dec 03, 2008

Tracked Since Feb 18, 2026