Package(s):	clamav	CVE #(s):	CAN-2005-2450
Created:	July 26, 2005	Updated:	August 16, 2005
Description:	Clam AntiVirus versions < 0.86.2 is vulnerable to integer overflows when handling the TNEF, CHM and FSG file formats. By sending a specially-crafted file an attacker could execute arbitrary code with the permissions of the user running Clam AntiVirus.
Alerts:	Debian DSA-776-1 clamav 2005-08-16 Mandriva MDKSA-2005:125 clamav 2005-07-27 Gentoo 200507-25 clamav 2005-07-26

---

to post comments