Lucene search

[email protected]CVE-2003-0946

HistoryDec 15, 2003 - 5:00 a.m.

CVE-2003-0946

2003-12-1505:00:00

[email protected]

web.nvd.nist.gov

cve-2003-0946

clamav

format string vulnerability

denial of service

remote code execution

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.3%

JSON

Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 through 0.60p, and other versions before 0.65, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in the email address argument of a “MAIL FROM” command.

Affected configurations

NVD

Node

clam_anti-virusclamavMatch0.60

clam_anti-virusclamavMatch0.60p

CPENameOperatorVersion
clam_anti-virus:clamavclam anti-virus clamaveq0.60
clam_anti-virus:clamavclam anti-virus clamaveq0.60p

CPE	Name	Operator	Version
clam_anti-virus:clamav	clam anti-virus clamav	eq	0.60
clam_anti-virus:clamav	clam anti-virus clamav	eq	0.60p

References

marc.info/?l=bugtraq&m=106867135830683&w=2

sourceforge.net/project/shownotes.php?release_id=197038

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.3%

JSON

Related for CVE-2003-0946

cvelist1 debiancve1 nvd1