CVE-2005-2450

Published: Aug 3, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and earlier allow remote attackers to gain privileges via a crafted e-mail message.

Affected (3)

Products: Clam Anti Virus: Clamav

Clam Anti Virus

1 product

Clamav

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Clam Anti Virus Clamav	Version 0.85.1
Clam Anti Virus Clamav	Version 0.85
Clam Anti Virus Clamav	Version 0.86

References (30)

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000987

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=112230864412932&w=2

Source: cve@mitre.org

http://secunia.com/advisories/16180

Source: cve@mitre.org

http://secunia.com/advisories/16229

Source: cve@mitre.org

http://secunia.com/advisories/16250

Source: cve@mitre.org

http://secunia.com/advisories/16296

Source: cve@mitre.org

http://secunia.com/advisories/16458

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200507-25.xml

Source: cve@mitre.org

http://sourceforge.net/project/shownotes.php?release_id=344514

Source: cve@mitre.org

Patch

http://www.novell.com/linux/security/advisories/2005_18_sr.html

Source: cve@mitre.org

http://www.osvdb.org/18257

Source: cve@mitre.org

http://www.osvdb.org/18258

Source: cve@mitre.org

http://www.osvdb.org/18259

Source: cve@mitre.org

http://www.securityfocus.com/bid/14359

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/21555

Source: cve@mitre.org

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000987