Back to search
CVE-2007-2650
Published: May 14, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
The OLE2 parser in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service (resource consumption) via an OLE2 file with (1) a large property size or (2) a loop in the FAT file block chain that triggers an infinite loop, as demonstrated via a crafted DOC file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
25796
third-party-advisory
x_refsource_SECUNIA
[clamav-devel] 20070418 Bug in OLE2 file parser
mailing-list
x_refsource_MLIST
SUSE-SA:2007:033
vendor-advisory
x_refsource_SUSE
25525
third-party-advisory
x_refsource_SECUNIA
25553
third-party-advisory
x_refsource_SECUNIA
ADV-2007-1776
vdb-entry
x_refsource_VUPEN
25523
third-party-advisory
x_refsource_SECUNIA
DSA-1320
vendor-advisory
x_refsource_DEBIAN
2007-0020
vendor-advisory
x_refsource_TRUSTIX
24316
vdb-entry
x_refsource_BID
MDKSA-2007:115
vendor-advisory
x_refsource_MANDRIVA
25244
third-party-advisory
x_refsource_SECUNIA
25558
third-party-advisory
x_refsource_SECUNIA
http://kolab.org/security/kolab-vendor-notice-15.txt
x_refsource_CONFIRM
25688
third-party-advisory
x_refsource_SECUNIA
http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog
x_refsource_CONFIRM
GLSA-200706-05
vendor-advisory
x_refsource_GENTOO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now