CVE-2007-0897

Loading...

General

Score:4.3/10.0
Severity:Low
Category:N/A
Exploit:Available

Impact Metrics

Confidentiality:None
Integrity:None
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:None

Relative vulnerabilities

CVE-2005-3352, CVE-2005-4077, CVE-2006-3334, CVE-2006-3747, CVE-2006-5793, CVE-2006-6481, CVE-2007-0898, CVE-2007-1659, CVE-2007-1660, CVE-2007-1661, CVE-2007-1662, CVE-2007-1745, CVE-2007-1997, CVE-2007-2445, CVE-2007-2799, CVE-2007-3378, CVE-2007-3725, CVE-2007-3799, CVE-2007-3847, CVE-2007-4510, CVE-2007-4560, CVE-2007-4568, CVE-2007-4752, CVE-2007-4766, CVE-2007-4767, CVE-2007-4768, CVE-2007-4887, CVE-2007-4990, CVE-2007-5000, CVE-2007-5266, CVE-2007-5267, CVE-2007-5268, CVE-2007-5269, CVE-2007-5759, CVE-2007-5795, CVE-2007-5901, CVE-2007-5958, CVE-2007-5971, CVE-2007-6109, CVE-2007-6203, CVE-2007-6335, CVE-2007-6336, CVE-2007-6337, CVE-2007-6388, CVE-2007-6421, CVE-2007-6427, CVE-2007-6428, CVE-2007-6429, CVE-2008-0005, CVE-2008-0006, CVE-2008-0044, CVE-2008-0045, CVE-2008-0046, CVE-2008-0047, CVE-2008-0048, CVE-2008-0049, CVE-2008-0050, CVE-2008-0051, CVE-2008-0052, CVE-2008-0053, CVE-2008-0054, CVE-2008-0055, CVE-2008-0056, CVE-2008-0057, CVE-2008-0058, CVE-2008-0059, CVE-2008-0060, CVE-2008-0062, CVE-2008-0063, CVE-2008-0318, CVE-2008-0596, CVE-2008-0728, CVE-2008-0882, CVE-2008-0987, CVE-2008-0988, CVE-2008-0989, CVE-2008-0990, CVE-2008-0992, CVE-2008-0993, CVE-2008-0994, CVE-2008-0995, CVE-2008-0996, CVE-2008-0997, CVE-2008-0998, CVE-2008-0999, CVE-2008-1000

Published on 16/02/07 - Updated on 29/07/17

Description

Clam AntiVirus ClamAV before 0.90 does not close open file descriptors under certain conditions, which allows remote attackers to cause a denial of service (file descriptor consumption and failed scans) via CAB archives with a cabinet header record length of zero, which causes a function to return without closing a file descriptor.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2007-0897
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2007-AVI-093, CERTA-2008-AVI-148
Renater 2008/VULN091

Exploits

SecurityFocusBID-22580

Relative technologies

VendorProduct
clam_anti-virusclamav

Share this vulnerability with:

Twitter Facebook LinkedIn Mail