Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2010-3434
HistorySep 30, 2010 - 3:00 p.m.

CVE-2010-3434

2010-09-3015:00:04
CWE-119
[email protected]
web.nvd.nist.gov
30
cve-2010-3434
buffer overflow
find_stream_bounds
libclamav
clamav
denial of service
remote code execution
crafted pdf

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

High

0.038 Low

EPSS

Percentile

91.9%

JSON

Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD
Node
clamavclamavRange0.96.2
OR
clamavclamavMatch0.01
OR
clamavclamavMatch0.02
OR
clamavclamavMatch0.3
OR
clamavclamavMatch0.03
OR
clamavclamavMatch0.05
OR
clamavclamavMatch0.9rc1
OR
clamavclamavMatch0.10
OR
clamavclamavMatch0.12
OR
clamavclamavMatch0.13
OR
clamavclamavMatch0.14
OR
clamavclamavMatch0.15
OR
clamavclamavMatch0.20
OR
clamavclamavMatch0.21
OR
clamavclamavMatch0.22
OR
clamavclamavMatch0.23
OR
clamavclamavMatch0.24
OR
clamavclamavMatch0.51
OR
clamavclamavMatch0.52
OR
clamavclamavMatch0.53
OR
clamavclamavMatch0.54
OR
clamavclamavMatch0.60
OR
clamavclamavMatch0.60p
OR
clamavclamavMatch0.65
OR
clamavclamavMatch0.66
OR
clamavclamavMatch0.67
OR
clamavclamavMatch0.67-1
OR
clamavclamavMatch0.68
OR
clamavclamavMatch0.68.1
OR
clamavclamavMatch0.70
OR
clamavclamavMatch0.71
OR
clamavclamavMatch0.72
OR
clamavclamavMatch0.73
OR
clamavclamavMatch0.74
OR
clamavclamavMatch0.75
OR
clamavclamavMatch0.75.1
OR
clamavclamavMatch0.80
OR
clamavclamavMatch0.80rc2
OR
clamavclamavMatch0.80rc3
OR
clamavclamavMatch0.80rc4
OR
clamavclamavMatch0.81
OR
clamavclamavMatch0.82
OR
clamavclamavMatch0.83
OR
clamavclamavMatch0.84
OR
clamavclamavMatch0.84rc1
OR
clamavclamavMatch0.84rc2
OR
clamavclamavMatch0.85
OR
clamavclamavMatch0.85.1
OR
clamavclamavMatch0.86
OR
clamavclamavMatch0.86rc1
OR
clamavclamavMatch0.86.1
OR
clamavclamavMatch0.86.2
OR
clamavclamavMatch0.87
OR
clamavclamavMatch0.87.1
OR
clamavclamavMatch0.88
OR
clamavclamavMatch0.88.1
OR
clamavclamavMatch0.88.2
OR
clamavclamavMatch0.88.3
OR
clamavclamavMatch0.88.4
OR
clamavclamavMatch0.88.5
OR
clamavclamavMatch0.88.6
OR
clamavclamavMatch0.88.7
OR
clamavclamavMatch0.90
OR
clamavclamavMatch0.90rc1
OR
clamavclamavMatch0.90rc1.1
OR
clamavclamavMatch0.90rc2
OR
clamavclamavMatch0.90rc3
OR
clamavclamavMatch0.90.1
OR
clamavclamavMatch0.90.2
OR
clamavclamavMatch0.90.3
OR
clamavclamavMatch0.90.3_p0
OR
clamavclamavMatch0.90.3_p1
OR
clamavclamavMatch0.91
OR
clamavclamavMatch0.91rc1
OR
clamavclamavMatch0.91rc2
OR
clamavclamavMatch0.91.1
OR
clamavclamavMatch0.91.2
OR
clamavclamavMatch0.91.2_p0
OR
clamavclamavMatch0.92
OR
clamavclamavMatch0.92.1
OR
clamavclamavMatch0.92_p0
OR
clamavclamavMatch0.93
OR
clamavclamavMatch0.93.1
OR
clamavclamavMatch0.93.2
OR
clamavclamavMatch0.93.3
OR
clamavclamavMatch0.94
OR
clamavclamavMatch0.94.1
OR
clamavclamavMatch0.94.2
OR
clamavclamavMatch0.95
OR
clamavclamavMatch0.95rc1
OR
clamavclamavMatch0.95rc2
OR
clamavclamavMatch0.95src1
OR
clamavclamavMatch0.95src2
OR
clamavclamavMatch0.95.1
OR
clamavclamavMatch0.95.2
OR
clamavclamavMatch0.95.3
OR
clamavclamavMatch0.96
OR
clamavclamavMatch0.96rc1
OR
clamavclamavMatch0.96rc2
OR
clamavclamavMatch0.96.1

Related

nessus 10
nvd 1
openvas 7
prion 1
cvelist 1
ubuntucve 1
debiancve 1
gentoo 1
securityvulns 2
nessus
nessus
openSUSE Security Update : clamav (openSUSE-SU-2010:0921-1)
2014-06-13 00:00:00
openSUSE Security Update : clamav (openSUSE-SU-2010:0921-1)
2010-10-30 00:00:00
SuSE 11 / 11.1 Security Update : clamav (SAT Patch Numbers 3440 / 3441)
2010-12-02 00:00:00
nvd
nvd
CVE-2010-3434
2010-09-30 15:00:04
openvas
openvas
ClamAV 'find_stream_bounds()' function Buffer Overflow Vulnerability
2010-10-07 00:00:00
ClamAV < 0.96.3 'find_stream_bounds()' PDF File Processing DoS Vulnerability - Windows
2010-09-29 00:00:00
ClamAV < 0.96.3 'find_stream_bounds()' PDF File Processing DoS Vulnerability - Linux
2010-10-07 00:00:00
prion
prion
Buffer overflow
2010-09-30 15:00:00
cvelist
cvelist
CVE-2010-3434
2010-09-30 14:00:00
ubuntucve
ubuntucve
CVE-2010-3434
2010-09-30 00:00:00
debiancve
debiancve
CVE-2010-3434
2010-09-30 15:00:04
gentoo
gentoo
Clam AntiVirus: Multiple vulnerabilities
2011-10-24 00:00:00
securityvulns
securityvulns
About the security content of Mac OS X v10.6.7 and Security Update 2011-001
2011-03-23 00:00:00
Apple Mac OS X multiple security vulnerabilities
2011-03-23 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

High

0.038 Low

EPSS

Percentile

91.9%

JSON
Related for CVE-2010-3434
nessus10nvd1openvas7prion1cvelist1ubuntucve1debiancve1gentoo1securityvulns2