CVE-2016-1372
MEDIUMClamAV <0.99.2 - DoS
Title source: llmDescription
ClamAV (aka Clam AntiVirus) before 0.99.2 allows remote attackers to cause a denial of service (application crash) via a crafted 7z file.
References (5)
Scores
CVSS v3
5.5
EPSS
0.0043
EPSS Percentile
62.2%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Classification
CWE
CWE-284
Status
published
Affected Products (5)
canonical/ubuntu_linux
clamav/clamav
< 0.99.1
canonical/ubuntu_linux
canonical/ubuntu_linux
n/a/n/a
Timeline
Published
Oct 03, 2016
Tracked Since
Feb 18, 2026