Showing 1 - 6 of 6

CVE-2020-3327

Status Candidate

Overview

A vulnerability in the ARJ archive parsing module in Clam AntiVirus (ClamAV) Software versions 0.102.2 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a heap buffer overflow read. An attacker could exploit this vulnerability by sending a crafted ARJ file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process crash, resulting in a denial of service condition.

Related Files

Ubuntu Security Notice USN-4435-2: Posted Jul 27, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4435-2 - USN-4435-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.; tags | advisory, remote, denial of service, vulnerability; systems | linux, ubuntu; advisories | CVE-2020-3327, CVE-2020-3350, CVE-2020-3481; SHA-256 | 4afe934b8629dfa16ec6c07cb7c59e43a30a773854c88c66c6f5b7e4c1346eff; Download | Favorite | View

Ubuntu Security Notice USN-4435-1: Posted Jul 27, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4435-1 - It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. It was discovered that ClamAV incorrectly handled scanning malicious files. A local attacker could possibly use this issue to delete arbitrary files. It was discovered that ClamAV incorrectly handled parsing EGG archives. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.; tags | advisory, remote, denial of service, arbitrary, local; systems | linux, ubuntu; advisories | CVE-2020-3327, CVE-2020-3350, CVE-2020-3481; SHA-256 | bdd994238e41940137543be49827bbffa97900a52196a21d57ae900f18beede5; Download | Favorite | View

Clam AntiVirus Toolkit 0.102.4: Posted Jul 16, 2020; Authored by Tomasz Kojm | Site clamav.net; Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a command-line scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.; Changes: Multiple security issues have been addressed that include symlink and denial of service attacks.; tags | virus; systems | unix; advisories | CVE-2020-3327, CVE-2020-3350, CVE-2020-3481; SHA-256 | eebd426a68020ecad0d2084b8c763e6898ccfd5febcae833d719640bb3ff391b; Download | Favorite | View

Ubuntu Security Notice USN-4370-2: Posted May 21, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4370-2 - USN-4370-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 12.04 ESM and 14.04 ESM. It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. Various other issues were also addressed.; tags | advisory, remote, denial of service, vulnerability; systems | linux, ubuntu; advisories | CVE-2020-3327, CVE-2020-3341; SHA-256 | de5808ae689b12e140acaa5c772d93c4aa0a4002f73bce4c4a5a6876954e3227; Download | Favorite | View

Ubuntu Security Notice USN-4370-1: Posted May 21, 2020; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4370-1 - It was discovered that ClamAV incorrectly handled parsing ARJ archives. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. It was discovered that ClamAV incorrectly handled parsing PDF files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service.; tags | advisory, remote, denial of service; systems | linux, ubuntu; advisories | CVE-2020-3327, CVE-2020-3341; SHA-256 | 877820ed17d981fa733ed7bc43ded0af110ab954d544704bdcd37aea406a4d50; Download | Favorite | View

Clam AntiVirus Toolkit 0.102.3: Posted May 12, 2020; Authored by Tomasz Kojm | Site clamav.net; Clam AntiVirus is an anti-virus toolkit for Unix. The main purpose of this software is the integration with mail servers (attachment scanning). The package provides a flexible and scalable multi-threaded daemon, a command-line scanner, and a tool for automatic updating via Internet. The programs are based on a shared library distributed with the Clam AntiVirus package, which you can use in your own software.; Changes: Multiple security issues have been addressed. A couple additional bug fixes have been applied.; tags | tool, virus; systems | unix; advisories | CVE-2020-3327, CVE-2020-3341; SHA-256 | ed3050c4569989ee7ab54c7b87246b41ed808259632849be0706467442dc0693; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 240 files
indoushka 173 files
Jay Turla 150 files
Ubuntu 78 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,114)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,123)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (389)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,209)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,823)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,848)
UNIX (9,455)
UnixWare (188)
Windows (6,772)
Other

CVE-2020-3327

Overview

Related Files

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems