CVE-2011-3627

Description

The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service (crash) via vectors related to "recursion level" and (1) libclamav/bytecode.c and (2) libclamav/bytecode_api.c.

CVSS Metrics

• v2.0•MEDIUM•Score: 4.3AV:N/AC:M/Au:N/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 2.72%• Percentile: 86%

Techniques & Countermeasures

• CWE-189•Numeric Errors

  Weaknesses in this category are related to improper calculation or conversion of numbers.

Affected Systems

• clamav•clamav

  ≤ 0.97.2 | 0.9:rc1 | 0.90 | 0.90:rc1 | 0.90:rc1.1 | 0.90:rc2 | 0.90:rc3 | 0.90.1 | 0.90.2 | 0.90.3 | 0.91 | 0.91:rc1 | 0.91:rc2 | 0.91.1 | 0.91.2 | 0.92 | 0.92.1 | 0.93 | 0.93.1 | 0.93.2 | 0.93.3 | 0.94 | 0.94.1 | 0.94.2 | 0.95 | 0.95:rc1 | 0.95:rc2 | 0.95:src1 | 0.95:src2 | 0.95.1 | 0.95.2 | 0.95.3 | 0.96 | 0.96:rc1 | 0.96:rc2 | 0.96.1 | 0.96.2 | 0.96.3 | 0.96.4 | 0.96.5 | 0.97 | 0.97:rc | 0.97.1

References (10)

• http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068942.html
• https://bugzilla.redhat.com/show_bug.cgi?id=746984
• http://www.securityfocus.com/bid/50183
• http://secunia.com/advisories/46717
• http://secunia.com/advisories/46826
• http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068940.html
• http://lists.fedoraproject.org/pipermail/package-announce/2011-November/068941.html
• http://www.ubuntu.com/usn/USN-1258-1
• http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commitdiff%3Bh=3d664817f6ef833a17414a4ecea42004c35cc42f
• http://www.openwall.com/lists/oss-security/2011/10/18/1