Vulnerability CVE-2006-1614

Vulnerability Name:

CVE-2006-1614 (CCN-25660)

Assigned:

2006-04-06

Published:

2006-04-06

Updated:

2018-10-18

Summary:

Integer overflow in the cli_scanpe function in the PE header parser (libclamav/pe.c) in Clam AntiVirus (ClamAV) before 0.88.1, when ArchiveMaxFileSize is disabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code.

CVSS v3 Severity:

5.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

5.1 Medium (CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

5.1 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: BugTraq Mailing List, Thu Apr 06 2006 - 11:10:48 CDT
[Overflow.pl] Clam AntiVirus Win32-UPX Heap Overflow (not default configuration)

Source: MITRE
Type: CNA
CVE-2006-1614

Source: CCN
Type: Apple Security Update 2006-003
About Security Update 2006-003

Source: APPLE
Type: UNKNOWN
APPLE-SA-2006-05-11

Source: SUSE
Type: UNKNOWN
SUSE-SA:2006:020

Source: CCN
Type: SA19534
ClamAV Multiple Vulnerabilities

Source: SECUNIA
Type: Patch, Vendor Advisory
19534

Source: SECUNIA
Type: Patch, Vendor Advisory
19536

Source: SECUNIA
Type: UNKNOWN
19564

Source: SECUNIA
Type: UNKNOWN
19567

Source: SECUNIA
Type: UNKNOWN
19570

Source: SECUNIA
Type: UNKNOWN
19608

Source: CCN
Type: SA20077
Mac OS X Security Update Fixes Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
20077

Source: SECUNIA
Type: UNKNOWN
23719

Source: CCN
Type: SECTRACK ID: 1015887
Clam AntiVirus Integer Overflow in Processing UPX File PE Headers Lets Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1015887

Source: CCN
Type: SourceForge.net: Files
Clam AntiVirus - File Release Notes and Changelog - Release Name: 0.88.1

Source: CONFIRM
Type: Patch
http://sourceforge.net/project/shownotes.php?release_id=407078&group_id=86638

Source: CONFIRM
Type: UNKNOWN
http://up2date.astaro.com/2006/05/low_up2date_6202.html

Source: DEBIAN
Type: Patch, Vendor Advisory
DSA-1024

Source: DEBIAN
Type: DSA-1024
clamav -- several vulnerabilities

Source: CCN
Type: GLSA-200604-06
ClamAV: Multiple vulnerabilities

Source: GENTOO
Type: UNKNOWN
GLSA-200604-06

Source: MANDRIVA
Type: UNKNOWN
MDKSA-2006:067

Source: OSVDB
Type: UNKNOWN
24457

Source: CCN
Type: OSVDB ID: 24457
Clam AntiVirus PE Header Parser Overflow

Source: MISC
Type: Exploit, Vendor Advisory
http://www.overflow.pl/adv/clamavupxinteger.txt

Source: BUGTRAQ
Type: UNKNOWN
20060406 [Overflow.pl] Clam AntiVirus Win32-UPX Heap Overflow (not default configuration)

Source: BID
Type: UNKNOWN
17388

Source: CCN
Type: BID-17388
Clam AntiVirus ClamAV Multiple Vulnerabilities

Source: BID
Type: UNKNOWN
17951

Source: CCN
Type: BID-17951
Apple Mac OS X Security Update 2006-003 Multiple Vulnerabilities

Source: TRUSTIX
Type: UNKNOWN
2006-0020

Source: CERT
Type: US Government Resource
TA06-132A

Source: VUPEN
Type: UNKNOWN
ADV-2006-1258

Source: VUPEN
Type: UNKNOWN
ADV-2006-1779

Source: XF
Type: UNKNOWN
clamav-pe-overflow(25660)

Source: XF
Type: UNKNOWN
clamav-pe-overflow(25660)

Source: SUSE
Type: SUSE-SA:2006:020
clamav various problems

Vulnerable Configuration:

Configuration 1:

cpe:/a:clam_anti-virus:clamav:0.51:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.52:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.53:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.54:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.60:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.65:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.67:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.68:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.68.1:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.70:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.75.1:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.80:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.80_rc1:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.80_rc2:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.80_rc3:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.80_rc4:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.81:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.82:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.83:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.84:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.84_rc1:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.84_rc2:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.85:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.85.1:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.86:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.86.1:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.86.2:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.87:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.87.1:*:*:*:*:*:*:*

OR cpe:/a:clam_anti-virus:clamav:0.88:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20061614	V	CVE-2006-1614	2022-06-30
oval:org.opensuse.security:def:112078	P	clamav-0.103.3-1.4 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:105621	P	clamav-0.103.3-1.4 on GA media (Moderate)	2021-10-01
oval:org.debian:def:1024	V	several vulnerabilities	2006-04-05

BACK