Description
ClamAV before 0.97.7 has buffer overflow in the libclamav component
References (5)
Core 5
Core References
Third Party Advisory x_refsource_misc
http://security.gentoo.org/glsa/glsa-201405-08.xml
Third Party Advisory x_refsource_misc
https://security-tracker.debian.org/tracker/CVE-2013-7088
Issue Tracking, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-7088
Mailing List, Third Party Advisory x_refsource_misc
http://www.openwall.com/lists/oss-security/2013/12/13/1
Third Party Advisory, VDB Entry x_refsource_misc
http://www.securityfocus.com/bid/58546
Scores
CVSS v3
9.8
EPSS
0.0040
EPSS Percentile
61.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-120
Status
published
Products (6)
clamav/clamav
< 0.97.7
debian/debian_linux
8.0
debian/debian_linux
9.0
debian/debian_linux
10.0
fedoraproject/fedora
17
fedoraproject/fedora
18
Published
Nov 15, 2019
Tracked Since
Feb 18, 2026