| Vulnerability Name: | CVE-2006-6406 (CCN-31017) | ||||||||||||
| Assigned: | 2006-12-09 | ||||||||||||
| Published: | 2006-12-09 | ||||||||||||
| Updated: | 2018-10-17 | ||||||||||||
| Summary: | Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file. | ||||||||||||
| CVSS v3 Severity: | 5.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N) 3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)
3.8 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
| ||||||||||||
| Vulnerability Type: | CWE-Other | ||||||||||||
| Vulnerability Consequences: | Bypass Security | ||||||||||||
| References: | Source: CCN Type: BugTraq Mailing List, Wed Dec 06 2006 - 08:24:25 CST Multiple Vendor Unusual MIME Encoding Content Filter Bypass Source: MITRE Type: CNA CVE-2006-6405 Source: MITRE Type: CNA CVE-2006-6406 Source: MITRE Type: CNA CVE-2006-6407 Source: MITRE Type: CNA CVE-2006-6408 Source: MITRE Type: CNA CVE-2006-6409 Source: CONFIRM Type: UNKNOWN http://kolab.org/security/kolab-vendor-notice-14.txt Source: SECUNIA Type: UNKNOWN 23362 Source: SECUNIA Type: UNKNOWN 23379 Source: SECUNIA Type: UNKNOWN 23411 Source: CCN Type: SA23460 Kolab Server ClamAV Denial of Service Vulnerability Source: SECUNIA Type: UNKNOWN 23460 Source: CCN Type: SourceForge.net: Files Clam AntiVirus - File Release Notes and Changelog - Release Name: 0.88.7 Source: DEBIAN Type: UNKNOWN DSA-1238 Source: DEBIAN Type: DSA-1238 clamav -- several vulnerabilities Source: MANDRIVA Type: UNKNOWN MDKSA-2006:230 Source: SUSE Type: UNKNOWN SUSE-SA:2006:078 Source: CCN Type: OSVDB ID: 31284 Clam AntiVirus Invalid Base64 MIME Scanning Bypass Source: CCN Type: OSVDB ID: 31285 BitDefender Mail Protection Invalid Base64 MIME Scanning Bypass Source: CCN Type: OSVDB ID: 31288 Frisk F-PROT Antivirus Invalid Base64 MIME Scanning Bypass Source: CCN Type: OSVDB ID: 31290 Kaspersky Anti-Virus Invalid Base64 MIME Scanning Bypass Source: CCN Type: OSVDB ID: 31292 F-Secure Anti-Virus Invalid Base64 MIME Scanning Bypass Source: MISC Type: Exploit, Vendor Advisory http://www.quantenblog.net/security/virus-scanner-bypass Source: BUGTRAQ Type: UNKNOWN 20061206 Multiple Vendor Unusual MIME Encoding Content Filter Bypass Source: BID Type: UNKNOWN 21461 Source: CCN Type: BID-21461 Multiple Security Products MIME Encoding Content Filter Bypass Weakness Source: VUPEN Type: UNKNOWN ADV-2006-4948 Source: VUPEN Type: UNKNOWN ADV-2006-5113 Source: XF Type: UNKNOWN multiple-mime-security-bypass(31017) Source: SUSE Type: SUSE-SA:2006:078 clamav security update | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||||||
| Oval Definitions | |||||||||||||
| |||||||||||||
| BACK | |||||||||||||