CVE-2004-1909 - Claim Anti-Virus (ClamAV) 0.68 and earlier allows remote attackers to cause a denial of service (cra

CVE-2004-1909

Summary

Claim Anti-Virus (ClamAV) 0.68 and earlier allows remote attackers to cause a denial of service (crash) via certain RAR archives, such as those generated by the Beagle/Bagle worm.

References

http://freshmeat.net/projects/clamav/?branch_id=29355&release_id=154462
http://secunia.com/advisories/11177
http://security.gentoo.org/glsa/glsa-200404-07.xml
http://www.securityfocus.com/bid/9897
https://exchange.xforce.ibmcloud.com/vulnerabilities/15553

Vulnerable Configurations

cpe:2.3:a:clam_anti-virus:clamav:0.65:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.65:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.67:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.67:*:*:*:*:*:*:*

CVSS

Base:	2.6 (as of 11-07-2017 - 01:31)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	HIGH	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:H/Au:N/C:N/I:N/A:P

refmap via4

bid	9897
confirm	http://freshmeat.net/projects/clamav/?branch_id=29355&release_id=154462
gentoo	GLSA-200404-07
secunia	11177
xf	clam-antivirus-rar-dos(15553)

Last major update

11-07-2017 - 01:31

Published

31-12-2004 - 05:00

Last modified

11-07-2017 - 01:31