Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2006:046: clamav Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the clamav package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2006:046 (clamav).
Damian Put discovered a bug in the UPX decoder used for scanning UPX
compressed Windows executables. The bug allows for a heap buffer
overflow and may potentially be exploitable to execute arbitrary
code. ClamAV has been version updated to version 0.88.4 in order to
fix this problem.
Solution : http://www.suse.de/security/http://www.novell.com/linux/security/advisories/2006_46_clamav.html
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.