CVE
- Id
- 46845
- CVE No.
- CVE-2010-4261
- Status
- Candidate
- Description
- Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors. NOTE: some of these details are obtained from third party information.
- Phase
- Assigned (20101116)
- Votes
- None (candidate not yet proposed)
- Comments
Related CVE References
| Id | CVE Id | CVE No. | Reference | Actions |
|---|---|---|---|---|
| 512072 | 46845 | CVE-2010-4261 | MLIST:[oss-security] 20101203 Re: clamav 0.96.5 released | View |
| 512073 | 46845 | CVE-2010-4261 | URL:http://openwall.com/lists/oss-security/2010/12/03/6 | View |
| 512074 | 46845 | CVE-2010-4261 | MLIST:[oss-security] 20101203 Re: clamav 0.96.5 released | View |
| 512075 | 46845 | CVE-2010-4261 | URL:http://openwall.com/lists/oss-security/2010/12/03/3 | View |
| 512076 | 46845 | CVE-2010-4261 | MLIST:[oss-security] 20101203 clamav 0.96.5 released | View |
| 512077 | 46845 | CVE-2010-4261 | URL:http://openwall.com/lists/oss-security/2010/12/03/1 | View |
| 512078 | 46845 | CVE-2010-4261 | MISC:http://xorl.wordpress.com/2010/12/05/cve-2010-4261-clamav-icon_cb-off-by-one/ | View |
| 512079 | 46845 | CVE-2010-4261 | CONFIRM:http://git.clamav.net/gitweb?p=clamav-devel.git;a=blob_plain;f=ChangeLog;hb=master | View |
| 512080 | 46845 | CVE-2010-4261 | CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=659861 | View |
| 512081 | 46845 | CVE-2010-4261 | CONFIRM:https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2344 | View |
| 512082 | 46845 | CVE-2010-4261 | CONFIRM:http://support.apple.com/kb/HT4581 | View |
| 512083 | 46845 | CVE-2010-4261 | APPLE:APPLE-SA-2011-03-21-1 | View |
| 512084 | 46845 | CVE-2010-4261 | URL:http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html | View |
| 512085 | 46845 | CVE-2010-4261 | FEDORA:FEDORA-2010-18568 | View |
| 512086 | 46845 | CVE-2010-4261 | URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051905.html | View |
| 512087 | 46845 | CVE-2010-4261 | FEDORA:FEDORA-2010-18564 | View |
| 512088 | 46845 | CVE-2010-4261 | URL:http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052401.html | View |
| 512089 | 46845 | CVE-2010-4261 | MANDRIVA:MDVSA-2010:249 | View |
| 512090 | 46845 | CVE-2010-4261 | URL:http://www.mandriva.com/security/advisories?name=MDVSA-2010:249 | View |
| 512091 | 46845 | CVE-2010-4261 | SUSE:SUSE-SR:2010:024 | View |
| 512092 | 46845 | CVE-2010-4261 | URL:http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html | View |
| 512093 | 46845 | CVE-2010-4261 | UBUNTU:USN-1031-1 | View |
| 512094 | 46845 | CVE-2010-4261 | URL:http://www.ubuntu.com/usn/USN-1031-1 | View |
| 512095 | 46845 | CVE-2010-4261 | BID:45152 | View |
| 512096 | 46845 | CVE-2010-4261 | URL:http://www.securityfocus.com/bid/45152 | View |
| 512097 | 46845 | CVE-2010-4261 | SECTRACK:1024818 | View |
| 512098 | 46845 | CVE-2010-4261 | URL:http://www.securitytracker.com/id?1024818 | View |
| 512099 | 46845 | CVE-2010-4261 | SECUNIA:42426 | View |
| 512100 | 46845 | CVE-2010-4261 | URL:http://secunia.com/advisories/42426 | View |
| 512101 | 46845 | CVE-2010-4261 | SECUNIA:42523 | View |
| 512102 | 46845 | CVE-2010-4261 | URL:http://secunia.com/advisories/42523 | View |
| 512103 | 46845 | CVE-2010-4261 | SECUNIA:42555 | View |
| 512104 | 46845 | CVE-2010-4261 | URL:http://secunia.com/advisories/42555 | View |
| 512105 | 46845 | CVE-2010-4261 | SECUNIA:42720 | View |
| 512106 | 46845 | CVE-2010-4261 | URL:http://secunia.com/advisories/42720 | View |
| 512107 | 46845 | CVE-2010-4261 | VUPEN:ADV-2010-3135 | View |
| 512108 | 46845 | CVE-2010-4261 | URL:http://www.vupen.com/english/advisories/2010/3135 | View |
| 512109 | 46845 | CVE-2010-4261 | VUPEN:ADV-2010-3137 | View |
| 512110 | 46845 | CVE-2010-4261 | URL:http://www.vupen.com/english/advisories/2010/3137 | View |
| 512111 | 46845 | CVE-2010-4261 | VUPEN:ADV-2010-3185 | View |
Related JVN
| Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
|---|---|---|---|---|---|---|---|---|---|
| 37615 | JVNDB-2010-003400 | Red Hat JBoss Enterprise Application Platform の JBoss Remoting におけるサービス運用妨害 (DoS) の脆弱性 | Red Hat JBoss Enterprise Application Platform (JBoss EAP または JBEAP) に含まれる JBoss Remoting の org.jboss.remoting.transport.bisocket.BisocketServerInvoker$SecondaryServerSocketThread.run メソッドには、サービス運用妨害 (デーモン停止) 状態となる脆弱性が存在します。CVE-2010-3862 のパッチ不足に関連しています。 | CVE-2010-4265 | 46845 | 2.6 | http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-003400.html | View |
