CVE-2013-6497

Published: Dec 1, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

clamscan in ClamAV before 0.98.5, when using -a option, allows remote attackers to cause a denial of service (crash) as demonstrated by the jwplayer.js file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

openSUSE-SU-2014:1560

vendor-advisory

x_refsource_SUSE

[oss-security] 20141118 Fwd: [Clamav-devel] ClamAV(R) blog: ClamAV 0.98.5 has been released!

mailing-list

x_refsource_MLIST

FEDORA-2014-15473

vendor-advisory

x_refsource_FEDORA

SUSE-SU-2014:1571

vendor-advisory

x_refsource_SUSE

FEDORA-2014-15463

vendor-advisory

x_refsource_FEDORA

[oss-security] 20141118 Re: Fwd: [Clamav-devel] ClamAV(R) blog: ClamAV 0.98.5 has been released!

mailing-list

x_refsource_MLIST

http://blog.clamav.net/2014/11/clamav-0985-has-been-released.html

x_refsource_CONFIRM

71178

vdb-entry

x_refsource_BID

MDVSA-2014:217

vendor-advisory

x_refsource_MANDRIVA

59645

third-party-advisory

x_refsource_SECUNIA

60150

third-party-advisory

x_refsource_SECUNIA

USN-2423-1

vendor-advisory

x_refsource_UBUNTU

https://bugzilla.clamav.net/show_bug.cgi?id=11088

x_refsource_CONFIRM

USN-2488-2

vendor-advisory

x_refsource_UBUNTU

https://bugzilla.redhat.com/show_bug.cgi?id=1138101

x_refsource_CONFIRM

clamv-cve20136497os(98804)

vdb-entry

x_refsource_XF

SUSE-SU-2014:1574

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-6497

Description

Affected Products

References