Lucene search
HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-0218
clamav
vulnerability
virus scanning
bypass
base64
encoded image
data url
nvd
cve-2005-0218
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.5 Medium
AI Score
Confidence
Low
0.086 Low
EPSS
Percentile
94.5%
ClamAV 0.80 and earlier allows remote attackers to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL.
Affected configurations
Node
clam_anti-virusclamavMatch0.51
ORclam_anti-virusclamavMatch0.52
ORclam_anti-virusclamavMatch0.53
ORclam_anti-virusclamavMatch0.54
ORclam_anti-virusclamavMatch0.60
ORclam_anti-virusclamavMatch0.65
ORclam_anti-virusclamavMatch0.67
ORclam_anti-virusclamavMatch0.68
ORclam_anti-virusclamavMatch0.68.1
ORclam_anti-virusclamavMatch0.80
References
Related
checkpoint_advisories
checkpoint_advisories
Multiple Vendor AV Gateway Virus Detection Bypass (CVE-2005-0218)
2010-06-20 00:00:00
cvelist
cvelist
CVE-2005-0218
2005-02-06 05:00:00
ubuntucve
ubuntucve
CVE-2005-0218
2005-05-02 00:00:00
nvd
nvd
CVE-2005-0218
2005-05-02 04:00:00
debiancve
debiancve
CVE-2005-0218
2005-05-02 04:00:00
gentoo
gentoo
ClamAV: Multiple issues
2005-01-31 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : clamav (MDKSA-2005:025)
2005-02-02 00:00:00
GLSA-200501-46 : ClamAV: Multiple issues
2005-02-14 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.5 Medium
AI Score
Confidence
Low
0.086 Low
EPSS
Percentile
94.5%
Related for CVE-2005-0218