๐ SourceFire ClamAV 0.97.1 up to 0.97.7 libclamav/pdf.c cli_scanpe File memory corruption
๐ก Newskategorie: Sicherheitslรผcken
๐ Quelle: vuldb.com
A vulnerability was found in SourceFire ClamAV 0.97.1 up to 0.97.7 (Anti-Malware Software). It has been classified as very critical. This affects the function cli_scanpe
of the file libclamav/pdf.c. Upgrading to version 0.97.8 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version. A possible mitigation has been published immediately after the disclosure of the vulnerability. Furthermore it is possible to detect and prevent this kind of attack with TippingPoint and the filter 13009. ...