NVD

Id
53113  
Name
CVE-2007-0897  
Description
Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service (file descriptor consumption and failed scans) via CAB archives with a cabinet header record length of zero, which causes a function to return without closing a file descriptor.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-07  
Published
2007-02-16  
Modified Date
2011-03-07  
Seq
2007-0897  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
268584 53113 CVE-2007-0897 http://docs.info.apple.com/article.html?artnum=307562  View
268585 53113 CVE-2007-0897 20070215 Multiple Vendor ClamAV CAB File Denial of Service Vulnerability  View
268586 53113 CVE-2007-0897 APPLE-SA-2008-03-18  View
268587 53113 CVE-2007-0897 SUSE-SA:2007:017  View
268588 53113 CVE-2007-0897 GLSA-200703-03  View
268589 53113 CVE-2007-0897 DSA-1263  View
268590 53113 CVE-2007-0897 MDKSA-2007:043  View
268591 53113 CVE-2007-0897 22580  View
268592 53113 CVE-2007-0897 1017659  View
268593 53113 CVE-2007-0897 ADV-2007-0623  View
268594 53113 CVE-2007-0897 ADV-2008-0924  View
268595 53113 CVE-2007-0897 clamav-cabfile-dos(32531)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
52452 JVNDB-2007-001144 ClamAV におけるファイルの記述子の処理の不備によるサービス運用妨害 (DoS) の脆弱性 ClamAV には、open されたファイル記述子を適切に close しないため、CAB アーカイブ cabinet ヘッダの取り扱いに不備があり、ファイル記述子を大量に消費することによるサービス運用妨害 (DoS) の脆弱性が存在します。 CVE-2007-0897 24252 CVE-2007-0897 53113 4.3 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001144.html 2007-02-16 2008-04-10 View