CVE-2008-6845 - OpenCVE

The unpack feature in ClamAV 0.93.3 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a corrupted LZH file.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Clamav	Clamav

Configuration 1 [-]

OR	cpe:2.3:a:clamav:clamav::::::::
	cpe:2.3:a:clamav:clamav:0.01:::::::*
	cpe:2.3:a:clamav:clamav:0.02:::::::*
	cpe:2.3:a:clamav:clamav:0.3:::::::*
	cpe:2.3:a:clamav:clamav:0.03:::::::*
	cpe:2.3:a:clamav:clamav:0.05:::::::*
	cpe:2.3:a:clamav:clamav:0.10:::::::*
	cpe:2.3:a:clamav:clamav:0.12:::::::*
	cpe:2.3:a:clamav:clamav:0.13:::::::*
	cpe:2.3:a:clamav:clamav:0.14:pre::::::
	cpe:2.3:a:clamav:clamav:0.15:::::::*
	cpe:2.3:a:clamav:clamav:0.20:::::::*
	cpe:2.3:a:clamav:clamav:0.21:::::::*
	cpe:2.3:a:clamav:clamav:0.22:::::::*
	cpe:2.3:a:clamav:clamav:0.23:::::::*
	cpe:2.3:a:clamav:clamav:0.24:::::::*
	cpe:2.3:a:clamav:clamav:0.51:::::::*
	cpe:2.3:a:clamav:clamav:0.52:::::::*
	cpe:2.3:a:clamav:clamav:0.53:::::::*
	cpe:2.3:a:clamav:clamav:0.54:::::::*
	cpe:2.3:a:clamav:clamav:0.60:::::::*
	cpe:2.3:a:clamav:clamav:0.60p:::::::*
	cpe:2.3:a:clamav:clamav:0.65:::::::*
	cpe:2.3:a:clamav:clamav:0.66:::::::*
	cpe:2.3:a:clamav:clamav:0.67:::::::*
	cpe:2.3:a:clamav:clamav:0.67-1:::::::*
	cpe:2.3:a:clamav:clamav:0.68:::::::*
	cpe:2.3:a:clamav:clamav:0.68.1:::::::*
	cpe:2.3:a:clamav:clamav:0.70:::::::*
	cpe:2.3:a:clamav:clamav:0.70:rc::::::
	cpe:2.3:a:clamav:clamav:0.71:::::::*
	cpe:2.3:a:clamav:clamav:0.72:::::::*
	cpe:2.3:a:clamav:clamav:0.73:::::::*
	cpe:2.3:a:clamav:clamav:0.74:::::::*
	cpe:2.3:a:clamav:clamav:0.75:::::::*
	cpe:2.3:a:clamav:clamav:0.75.1:::::::*
	cpe:2.3:a:clamav:clamav:0.80:::::::*
	cpe:2.3:a:clamav:clamav:0.80:rc4::::::
	cpe:2.3:a:clamav:clamav:0.81:::::::*
	cpe:2.3:a:clamav:clamav:0.82:::::::*
	cpe:2.3:a:clamav:clamav:0.83:::::::*
	cpe:2.3:a:clamav:clamav:0.84:::::::*
	cpe:2.3:a:clamav:clamav:0.85:::::::*
	cpe:2.3:a:clamav:clamav:0.85.1:::::::*
	cpe:2.3:a:clamav:clamav:0.86:::::::*
	cpe:2.3:a:clamav:clamav:0.86.1:::::::*
	cpe:2.3:a:clamav:clamav:0.86.2:::::::*
	cpe:2.3:a:clamav:clamav:0.87:::::::*
	cpe:2.3:a:clamav:clamav:0.87.1:::::::*
	cpe:2.3:a:clamav:clamav:0.88:::::::*
	cpe:2.3:a:clamav:clamav:0.88.1:::::::*
	cpe:2.3:a:clamav:clamav:0.88.2:::::::*
	cpe:2.3:a:clamav:clamav:0.88.3:::::::*
	cpe:2.3:a:clamav:clamav:0.88.4:::::::*
	cpe:2.3:a:clamav:clamav:0.88.5:::::::*
	cpe:2.3:a:clamav:clamav:0.88.6:::::::*
	cpe:2.3:a:clamav:clamav:0.88.7:::::::*
	cpe:2.3:a:clamav:clamav:0.88.7_p0:::::::*
	cpe:2.3:a:clamav:clamav:0.88.7_p1:::::::*
	cpe:2.3:a:clamav:clamav:0.90:::::::*
	cpe:2.3:a:clamav:clamav:0.90.1:::::::*
	cpe:2.3:a:clamav:clamav:0.90.1_p0:::::::*
	cpe:2.3:a:clamav:clamav:0.90.2:::::::*
	cpe:2.3:a:clamav:clamav:0.90.2_p0:::::::*
cpe:2.3:a:clamav:clamav:0.90.3:::::::*
cpe:2.3:a:clamav:clamav:0.90.3_p0:::::::*
cpe:2.3:a:clamav:clamav:0.90.3_p1:::::::*
cpe:2.3:a:clamav:clamav:0.91:::::::*
cpe:2.3:a:clamav:clamav:0.91.1:::::::*
cpe:2.3:a:clamav:clamav:0.91.2:::::::*
cpe:2.3:a:clamav:clamav:0.91.2_p0:::::::*
cpe:2.3:a:clamav:clamav:0.92:::::::*
cpe:2.3:a:clamav:clamav:0.92.1:::::::*
cpe:2.3:a:clamav:clamav:0.92_p0:::::::*
cpe:2.3:a:clamav:clamav:0.93:::::::*
cpe:2.3:a:clamav:clamav:0.93.1:::::::*
cpe:2.3:a:clamav:clamav:0.93.2:::::::*

References

Link	Resource
http://osvdb.org/51963
http://www.ivizsecurity.com/security-advisory-iviz-sr-08011.html
http://www.securityfocus.com/archive/1/499078/100/0/threaded
http://www.securityfocus.com/bid/32752