7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.5 Medium
AI Score
Confidence
Low
0.327 Low
EPSS
Percentile
97.1%
Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and earlier allow remote attackers to gain privileges via a crafted e-mail message.
distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000987
marc.info/?l=bugtraq&m=112230864412932&w=2
secunia.com/advisories/16180
secunia.com/advisories/16229
secunia.com/advisories/16250
secunia.com/advisories/16296
secunia.com/advisories/16458
security.gentoo.org/glsa/glsa-200507-25.xml
sourceforge.net/project/shownotes.php?release_id=344514
www.novell.com/linux/security/advisories/2005_18_sr.html
www.osvdb.org/18257
www.osvdb.org/18258
www.osvdb.org/18259
www.securityfocus.com/bid/14359
exchange.xforce.ibmcloud.com/vulnerabilities/21555