Oval Definition:oval:org.opensuse.security:def:20071997
Revision Date:2022-06-30Version:1
Title:CVE-2007-1997
Description:

Integer signedness error in the (1) cab_unstore and (2) cab_extract functions in libclamav/cab.c in Clam AntiVirus (ClamAV) before 0.90.2 allow remote attackers to execute arbitrary code via a crafted CHM file that contains a negative integer, which passes a signed comparison and leads to a stack-based buffer overflow.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2007-1997
Mitre CVE-2007-1997
SUSE CVE-2007-1997
SUSE-SA:2007:026
SUSE-SA:2007:026
Platform(s):openSUSE 10.2
openSUSE Tumbleweed
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
Product(s):
Definition Synopsis
  • suse102 is installed
  • AND clamav less than 0.90.2-0.1
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND clamav-0.97.7-0.3.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND clamav-0.98.7-0.3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND clamav-0.97.7-0.3 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND clamav-0.97.3-0.2.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND clamav-0.97.7-0.3.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND clamav-0.98.7-0.3.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND clamav-0.97.3-0.2.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND clamav-0.96-0.12.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND clamav-0.98.7-0.3.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND clamav-0.97.7-0.3.1 is installed
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • clamav-0.103.3-1.4 is installed
  • OR clamav-devel-0.103.3-1.4 is installed
  • OR clamav-milter-0.103.3-1.4 is installed
  • OR libclamav9-0.103.3-1.4 is installed
  • OR libfreshclam2-0.103.3-1.4 is installed
    • BACK