Vulnerability Details CVE-2006-5874
Clam AntiVirus (ClamAV) 0.88 and earlier allows remote attackers to cause a denial of service (crash) via a malformed base64-encoded MIME attachment that triggers a null pointer dereference.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.014
EPSS Ranking 79.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/23327
- http://secunia.com/advisories/23362
- http://secunia.com/advisories/23411
- http://www.debian.org/security/2006/dsa-1232
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:230
- http://www.novell.com/linux/security/advisories/2006_78_clamav.html
- http://www.securityfocus.com/bid/21510
- http://secunia.com/advisories/23327
- http://secunia.com/advisories/23362
- http://secunia.com/advisories/23411
- http://www.debian.org/security/2006/dsa-1232
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:230
- http://www.novell.com/linux/security/advisories/2006_78_clamav.html
- http://www.securityfocus.com/bid/21510
Products affected by CVE-2006-5874
-
cpe:2.3:a:clam_anti-virus:clamav:*
-
cpe:2.3:a:clam_anti-virus:clamav:.
-
cpe:2.3:a:clam_anti-virus:clamav:0.80
-
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc1
-
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc2
-
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc3
-
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc4
-
cpe:2.3:a:clam_anti-virus:clamav:0.81
-
cpe:2.3:a:clam_anti-virus:clamav:0.81_rc1
-
cpe:2.3:a:clam_anti-virus:clamav:0.82
-
cpe:2.3:a:clam_anti-virus:clamav:0.83
-
cpe:2.3:a:clam_anti-virus:clamav:0.84
-
cpe:2.3:a:clam_anti-virus:clamav:0.84_rc1
-
cpe:2.3:a:clam_anti-virus:clamav:0.84_rc2
-
cpe:2.3:a:clam_anti-virus:clamav:0.85
-
cpe:2.3:a:clam_anti-virus:clamav:0.85.1
-
cpe:2.3:a:clam_anti-virus:clamav:0.86
-
cpe:2.3:a:clam_anti-virus:clamav:0.86.1
-
cpe:2.3:a:clam_anti-virus:clamav:0.86.2
-
cpe:2.3:a:clam_anti-virus:clamav:0.86_rc1
-
cpe:2.3:a:clam_anti-virus:clamav:0.87
-
cpe:2.3:a:clam_anti-virus:clamav:0.87.1