Back to search
CVE-2005-3501
Published: Nov 5, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero length.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
17451
third-party-advisory
x_refsource_SECUNIA
GLSA-200511-04
vendor-advisory
x_refsource_GENTOO
17501
third-party-advisory
x_refsource_SECUNIA
15317
vdb-entry
x_refsource_BID
17184
third-party-advisory
x_refsource_SECUNIA
20051104 Clam AntiVirus Cabinet-file handling Denial of Service Vulnerability
third-party-advisory
x_refsource_IDEFENSE
MDKSA-2005:205
vendor-advisory
x_refsource_MANDRIVA
17559
third-party-advisory
x_refsource_SECUNIA
20484
vdb-entry
x_refsource_OSVDB
http://sourceforge.net/project/shownotes.php?release_id=368319
x_refsource_CONFIRM
ADV-2005-2294
vdb-entry
x_refsource_VUPEN
150
third-party-advisory
x_refsource_SREASON
DSA-887
vendor-advisory
x_refsource_DEBIAN
17434
third-party-advisory
x_refsource_SECUNIA
1015154
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now