Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2006:020: clamav Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the clamav package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2006:020 (clamav).
Clamav was updated to version 0.88.1 to fix the following security
- An integer overflow in the PE header parser (CVE-2006-1614).
- Format string bugs in the logging code could potentially be
exploited to execute arbitrary code (CVE-2006-1615).
- Access to invalid memory could lead to a crash (CVE-2006-1630).
Solution : http://www.suse.de/security/advisories/2006_20_clamav.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.