Vulnerability Name:

CVE-2007-3024 (CCN-34889)

Assigned:2007-05-23
Published:2007-05-23
Updated:2008-09-05
Summary:libclamav/others.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1 uses insecure permissions for temporary files that are created by the cli_gentempstream function in clamd/clamdscan, which might allow local users to read sensitive files.
CVSS v3 Severity:4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
1.6 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
1.6 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2007-3024

Source: CCN
Type: Kolab Security Issue 15 20070601
denial of service, insecure temporary files

Source: CONFIRM
Type: UNKNOWN
http://kolab.org/security/kolab-vendor-notice-15.txt

Source: MLIST
Type: Patch
[Clamav-announce] 20070530 announcing ClamAV 0.90.3

Source: SECUNIA
Type: UNKNOWN
25523

Source: CCN
Type: SA25525
Kolab Server ClamAV Denial of Service

Source: SECUNIA
Type: UNKNOWN
25525

Source: SECUNIA
Type: UNKNOWN
25688

Source: SECUNIA
Type: UNKNOWN
25796

Source: GENTOO
Type: UNKNOWN
GLSA-200706-05

Source: CONFIRM
Type: UNKNOWN
http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog

Source: DEBIAN
Type: UNKNOWN
DSA-1320

Source: DEBIAN
Type: DSA-1320
clamav -- several vulnerabilities

Source: CCN
Type: GLSA-200706-05
ClamAV: Multiple Denials of Service

Source: SUSE
Type: UNKNOWN
SUSE-SA:2007:033

Source: CCN
Type: OSVDB ID: 35522
Clam AntiVirus libclamav Multiple Unspecified Issue

Source: BID
Type: UNKNOWN
24358

Source: CCN
Type: BID-24358
ClamAV Multiple Unspecified Vulnerabilities

Source: XF
Type: UNKNOWN
clamav-others-information-disclosure(34889)

Source: SUSE
Type: SUSE-SA:2007:033
clamav 0.90.3 update

Source: CCN
Type: ClamAV Bugzilla Bug 517
Bug 517 - bad tempfile creation / privilege escalation when running clamd as root

Source: CONFIRM
Type: Patch
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=517

Vulnerable Configuration:Configuration 1:
  • cpe:/a:clam_anti-virus:clamav:0.90:*:*:*:*:*:*:*
  • OR cpe:/a:clam_anti-virus:clamav:0.90.1:*:*:*:*:*:*:*
  • OR cpe:/a:clam_anti-virus:clamav:0.90.2:*:*:*:*:*:*:*
  • OR cpe:/a:clam_anti-virus:clamav:0.90_rc1.1:*:*:*:*:*:*:*
  • OR cpe:/a:clam_anti-virus:clamav:0.90_rc2:*:*:*:*:*:*:*
  • OR cpe:/a:clam_anti-virus:clamav:0.90_rc3:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:kolab:kolab_server:2.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:kolab:kolab_server:2.1.0:*:*:*:*:*:*:*
  • AND
  • cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:3.1:*:*:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2007:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2007::x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:4.0::x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0::x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2007.1:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:2007.1::x86-64:*:*:*:*:*
  • OR cpe:/a:novell:open_enterprise_server:*:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:10.2:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20073024
    V
    		CVE-2007-3024
    2015-11-16
    oval:org.mitre.oval:def:18727
    P
    		DSA-1320-1 clamav
    2014-06-23
    oval:org.debian:def:1320
    V
    		several vulnerabilities
    2007-06-23
    BACK
    clam_anti-virus clamav 0.90
    clam_anti-virus clamav 0.90.1
    clam_anti-virus clamav 0.90.2
    clam_anti-virus clamav 0.90_rc1.1
    clam_anti-virus clamav 0.90_rc2
    clam_anti-virus clamav 0.90_rc3
    kolab kolab server 2.0.4
    kolab kolab server 2.1.0
    gentoo linux *
    mandrakesoft mandrake linux corporate server 3.0
    debian debian linux 3.1
    novell open enterprise server *
    mandrakesoft mandrake linux 2007
    mandrakesoft mandrake linux 2007
    mandrakesoft mandrake linux corporate server 4.0
    mandrakesoft mandrake linux corporate server 4.0
    mandrakesoft mandrake linux corporate server 3.0
    mandrakesoft mandrake linux 2007.1
    debian debian linux 4.0
    mandrakesoft mandrake linux 2007.1
    novell open enterprise server *
    novell opensuse 10.2