CVE-2018-0202

MEDIUM

ClamAV < 0.99.4 - Unauthenticated Denial of Service via Crafted PDF File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-0202. PoCs published by jcjjaidigital.

AI-analyzed exploit summary This repository contains a writeup and installation instructions for ClamAV 0.99.3, which is vulnerable to CVE-2018-0202. It includes a patched version of ClamAV 0.99.3 with fixes for multiple CVEs, but no actual exploit code is present.

Description

clamscan in ClamAV before 0.99.4 contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation checking mechanisms when handling Portable Document Format (.pdf) files sent to an affected device. An unauthenticated, remote attacker could exploit this vulnerability by sending a crafted .pdf file to an affected device. This action could cause an out-of-bounds read when ClamAV scans the malicious file, allowing the attacker to cause a DoS condition. This concerns pdf_parse_array and pdf_parse_string in libclamav/pdfng.c. Cisco Bug IDs: CSCvh91380, CSCvh91400.

Exploits (1)

nomisec WRITEUP 1 stars
by jcjjaidigital · poc
https://github.com/jcjjaidigital/CVE-2018-0202

This repository contains a writeup and installation instructions for ClamAV 0.99.3, which is vulnerable to CVE-2018-0202. It includes a patched version of ClamAV 0.99.3 with fixes for multiple CVEs, but no actual exploit code is present.

Classification
Writeup 90%
Attack Type
Other
Complexity
N/a
Reliability
N/a
Target: ClamAV 0.99.3
No auth needed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3592-2/
Issue Tracking, Patch, Third Party Advisory x_refsource_confirm
https://bugzilla.clamav.net/show_bug.cgi?id=11973
Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.clamav.net/show_bug.cgi?id=11980
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2018/03/msg00011.html
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3592-1/
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/201804-16

Scores

CVSS v3 5.5
EPSS 0.0267
EPSS Percentile 83.9%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-125
Status published
Products (6)
canonical/ubuntu_linux 12.04
canonical/ubuntu_linux 14.04
canonical/ubuntu_linux 16.04
canonical/ubuntu_linux 17.10
clamav/clamav < 0.99.3
debian/debian_linux 7.0
Published Mar 27, 2018
Tracked Since Feb 18, 2026