1. CVE-Search
  2. CVE-2018-0202
ID CVE-2018-0202
Summary clamscan in ClamAV before 0.99.4 contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation checking mechanisms when handling Portable Document Format (.pdf) files sent to an affected device. An unauthenticated, remote attacker could exploit this vulnerability by sending a crafted .pdf file to an affected device. This action could cause an out-of-bounds read when ClamAV scans the malicious file, allowing the attacker to cause a DoS condition. This concerns pdf_parse_array and pdf_parse_string in libclamav/pdfng.c. Cisco Bug IDs: CSCvh91380, CSCvh91400.
References
Vulnerable Configurations
  • cpe:2.3:a:clamav:clamav:-:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:-:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.01:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.01:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.02:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.02:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.03:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.03:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.3:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.05:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.05:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.8:rc3:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.8:rc3:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.9:rc1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.9:rc1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.10:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.10:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.12:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.12:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.13:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.13:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.14:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.14:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.14:pre:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.14:pre:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.15:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.15:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.20:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.20:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.21:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.21:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.22:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.22:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.23:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.23:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.24:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.24:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.51:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.51:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.52:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.52:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.53:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.53:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.54:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.54:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.60:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.60:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.60p:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.60p:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.65:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.65:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.66:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.66:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.67:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.67:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.67-1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.67-1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.68:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.68:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.68.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.68.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.70:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.70:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.70:rc:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.70:rc:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.70.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.70.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.71:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.71:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.71.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.71.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.72:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.72:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.72.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.72.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.73:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.73:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.73.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.73.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.74:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.74:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.74.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.74.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.75:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.75:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.75.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.75.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.75.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.75.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.80:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.80:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.80:rc:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.80:rc:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.80:rc1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.80:rc1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.80:rc2:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.80:rc2:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.80:rc3:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.80:rc3:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.80:rc4:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.80:rc4:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.80.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.80.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.80_rc:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.80_rc:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.81:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.81:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.81:rc1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.81:rc1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.81.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.81.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.82:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.82:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.82.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.82.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.83:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.83:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.83.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.83.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.84:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.84:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.84:rc1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.84:rc1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.84:rc2:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.84:rc2:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.84.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.84.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.85:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.85:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.85.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.85.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.85.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.85.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.86:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.86:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.86:rc1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.86:rc1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.86.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.86.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.86.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.86.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.86.2:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.86.2:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.87:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.87:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.87.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.87.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.87.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.87.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88.2:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88.2:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88.3:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88.3:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88.4:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88.4:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88.5:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88.5:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88.6:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88.6:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88.7:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88.7:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88.7_p0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88.7_p0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.88.7_p1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.88.7_p1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90:rc1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90:rc1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90:rc1.1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90:rc1.1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90:rc2:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90:rc2:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90:rc3:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90:rc3:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90.1_p0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90.1_p0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90.2:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90.2:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90.2_p0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90.2_p0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90.3:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90.3:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90.3_p0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90.3_p0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.90.3_p1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.90.3_p1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.91:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.91:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.91:rc1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.91:rc1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.91:rc2:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.91:rc2:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.91.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.91.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.91.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.91.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.91.2:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.91.2:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.91.2_p0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.91.2_p0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.92:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.92:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.92.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.92.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.92.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.92.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.92_p0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.92_p0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.93:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.93:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.93.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.93.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.93.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.93.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.93.2:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.93.2:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.93.3:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.93.3:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.94:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.94:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.94.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.94.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.94.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.94.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.94.2:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.94.2:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.95:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.95:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.95:rc1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.95:rc1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.95:rc2:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.95:rc2:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.95:src1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.95:src1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.95:src2:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.95:src2:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.95.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.95.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.95.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.95.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.95.2:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.95.2:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.95.3:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.95.3:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.96:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.96:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.96:rc1:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.96:rc1:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.96:rc2:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.96:rc2:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.96.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.96.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.96.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.96.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.96.2:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.96.2:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.96.3:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.96.3:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.96.4:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.96.4:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.96.5:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.96.5:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97:rc:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97:rc:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97.2:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97.2:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97.3:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97.3:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97.4:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97.4:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97.5:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97.5:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97.6:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97.6:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97.7:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97.7:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.97.8:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.97.8:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.98.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.98.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.98.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.98.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.98.3:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.98.3:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.98.4:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.98.4:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.98.5:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.98.5:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.98.6:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.98.6:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.98.7:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.98.7:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.99.0:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.99.0:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.99.1:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.99.1:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.99.2:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.99.2:*:*:*:*:*:*:*
  • cpe:2.3:a:clamav:clamav:0.99.3:*:*:*:*:*:*:*
    cpe:2.3:a:clamav:clamav:0.99.3:*:*:*:*:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
  • cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
    cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
  • cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
    cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 26-03-2019 - 16:02)
Impact:
Exploitability:
CWE CWE-125
CAPEC
  • Infiltration of Hardware Development Environment
    An attacker, leveraging the ability to manipulate components of primary support systems and tools within the development and production environments, inserts malicious software within the hardware and/or firmware development environment. The infiltration purpose is to alter developed hardware components in a system destined for deployment at the victim's organization, for the purpose of disruption or further compromise.
  • Overread Buffers
    An adversary attacks a target by providing input that causes an application to read beyond the boundary of a defined buffer. This typically occurs when a value influencing where to start or stop reading is set to reflect positions outside of the valid memory location of the buffer. This type of attack may result in exposure of sensitive information, a system crash, or arbitrary code execution.
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
refmap via4
confirm
gentoo GLSA-201804-16
mlist [debian-lts-announce] 20180316 [SECURITY] [DLA 1307-1] clamav security update
ubuntu
  • USN-3592-1
  • USN-3592-2
Last major update 26-03-2019 - 16:02
Published 27-03-2018 - 09:29
Last modified 26-03-2019 - 16:02
Back to Top