Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:STC:DL:CLAMAV-CHM-DOS

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 ClamAV AntiVirus CHM File Handling Denial of Service

Release Date

 2010/10/13

Update Number

 1791

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: ClamAV AntiVirus CHM File Handling Denial of Service


A Denial of Service vulnerability exists in the ClamAV AntiVirus product. The vulnerability can be triggered when the application processes crafted CHM files. An unauthenticated attacker can exploit this vulnerability by delivering a crafted file to the scanning engine to cause a denial of service. In an attack case, the affected ClamAV daemon will terminate. This might allow for further exploitation of the target system, exposing the system to other threats in absence of the AntiVirus daemon.

Extended Description

ClamAV is prone to a denial-of-service vulnerability because of invalid memory access errors when processing malformed CHM files. Attackers can exploit this issue to cause denial-of-service conditions. Given the nature of this issue, attackers may also be able to run arbitrary code, but this has not been confirmed. Versions prior to ClamAV 0.94 are vulnerable.

Affected Products

  • Apple Mac OS X 10.4.0
  • Apple Mac OS X 10.4.1
  • Apple Mac OS X 10.4.10
  • Apple Mac OS X 10.4.11
  • Apple Mac OS X 10.4.2
  • Apple Mac OS X 10.4.3
  • Apple Mac OS X 10.4.4
  • Apple Mac OS X 10.4.5
  • Apple Mac OS X 10.4.6
  • Apple Mac OS X 10.4.7
  • Apple Mac OS X 10.4.8
  • Apple Mac OS X 10.4.9
  • Apple Mac OS X 10.5
  • Apple Mac OS X 10.5.1
  • Apple Mac OS X 10.5.2
  • Apple Mac OS X 10.5.3
  • Apple Mac OS X 10.5.4
  • Apple Mac OS X 10.5.5
  • Apple Mac OS X Server 10.4.0
  • Apple Mac OS X Server 10.4.1
  • Apple Mac OS X Server 10.4.10
  • Apple Mac OS X Server 10.4.11
  • Apple Mac OS X Server 10.4.2
  • Apple Mac OS X Server 10.4.3
  • Apple Mac OS X Server 10.4.4
  • Apple Mac OS X Server 10.4.5
  • Apple Mac OS X Server 10.4.6
  • Apple Mac OS X Server 10.4.7
  • Apple Mac OS X Server 10.4.8
  • Apple Mac OS X Server 10.4.9
  • Apple Mac OS X Server 10.5
  • Apple Mac OS X Server 10.5.1
  • Apple Mac OS X Server 10.5.2
  • Apple Mac OS X Server 10.5.3
  • Apple Mac OS X Server 10.5.4
  • Apple Mac OS X Server 10.5.5
  • Clam Anti-Virus ClamAV 0.51.0
  • Clam Anti-Virus ClamAV 0.52.0
  • Clam Anti-Virus ClamAV 0.53.0
  • Clam Anti-Virus ClamAV 0.54.0
  • Clam Anti-Virus ClamAV 0.60.0
  • Clam Anti-Virus ClamAV 0.65.0
  • Clam Anti-Virus ClamAV 0.67.0
  • Clam Anti-Virus ClamAV 0.68.0
  • Clam Anti-Virus ClamAV 0.68.0 -1
  • Clam Anti-Virus ClamAV 0.70.0
  • Clam Anti-Virus ClamAV 0.75.1
  • Clam Anti-Virus ClamAV 0.80.0
  • Clam Anti-Virus ClamAV 0.80.0 Rc1
  • Clam Anti-Virus ClamAV 0.80.0 Rc2
  • Clam Anti-Virus ClamAV 0.80.0 Rc3
  • Clam Anti-Virus ClamAV 0.80.0 Rc4
  • Clam Anti-Virus ClamAV 0.81.0
  • Clam Anti-Virus ClamAV 0.82.0
  • Clam Anti-Virus ClamAV 0.83.0
  • Clam Anti-Virus ClamAV 0.84.0
  • Clam Anti-Virus ClamAV 0.84.0 Rc1
  • Clam Anti-Virus ClamAV 0.84.0 Rc2
  • Clam Anti-Virus ClamAV 0.85.0
  • Clam Anti-Virus ClamAV 0.85.1
  • Clam Anti-Virus ClamAV 0.86.0
  • Clam Anti-Virus ClamAV 0.86.0 .1
  • Clam Anti-Virus ClamAV 0.86.2
  • Clam Anti-Virus ClamAV 0.87.0
  • Clam Anti-Virus ClamAV 0.87.0 -1
  • Clam Anti-Virus ClamAV 0.87.1
  • Clam Anti-Virus ClamAV 0.88.0
  • Clam Anti-Virus ClamAV 0.88.1
  • Clam Anti-Virus ClamAV 0.88.2
  • Clam Anti-Virus ClamAV 0.88.3
  • Clam Anti-Virus ClamAV 0.88.4
  • Clam Anti-Virus ClamAV 0.88.5
  • Clam Anti-Virus ClamAV 0.88.6
  • Clam Anti-Virus ClamAV 0.90.0
  • Clam Anti-Virus ClamAV 0.90.1
  • Clam Anti-Virus ClamAV 0.90.2
  • Clam Anti-Virus ClamAV 0.90.3
  • Clam Anti-Virus ClamAV 0.91
  • Clam Anti-Virus ClamAV 0.91.1
  • Clam Anti-Virus ClamAV 0.91.2
  • Clam Anti-Virus ClamAV 0.92
  • Clam Anti-Virus ClamAV 0.92.1
  • Clam Anti-Virus ClamAV 0.93
  • Clam Anti-Virus ClamAV 0.93.1
  • Gentoo Linux
  • Kolab Kolab Groupware Server 2.0.1
  • Kolab Kolab Groupware Server 2.0.2
  • Kolab Kolab Groupware Server 2.0.3
  • Kolab Kolab Groupware Server 2.0.4
  • Kolab Kolab Groupware Server 2.1.0
  • Kolab Kolab Groupware Server 2.1Beta2
  • Kolab Kolab Groupware Server 2.2.0
  • Kolab Kolab Groupware Server 2.2 Beta1
  • Kolab Kolab Groupware Server 2.2 Beta3
  • Kolab Kolab Groupware Server 2.2-Rc1
  • Kolab Kolab Groupware Server 2.2 -Rc2
  • Kolab Kolab Groupware Server 2.2-Rc3
  • Mandriva Corporate Server 3.0.0
  • Mandriva Corporate Server 3.0.0 X86 64
  • Mandriva Corporate Server 4.0
  • Mandriva Corporate Server 4.0.0 X86 64
  • Mandriva Linux Mandrake 2007.1
  • Mandriva Linux Mandrake 2007.1 X86 64
  • Mandriva Linux Mandrake 2008.0
  • Mandriva Linux Mandrake 2008.0 X86 64
  • Mandriva Linux Mandrake 2008.1
  • Mandriva Linux Mandrake 2008.1 X86 64
  • Red Hat Fedora 9
  • SuSE openSUSE 10.2
  • SuSE openSUSE 10.3
  • SuSE openSUSE 11.0

References

  • BugTraq: 30994
  • CVE: CVE-2008-1389

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out