Back to search
CVE-2005-1923
Published: Jun 30, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20050629 Clam AntiVirus ClamAV Cabinet File Handling DoS Vulnerability
third-party-advisory
x_refsource_IDEFENSE
DSA-737
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now