CVE-2005-0133Anti-virus Clamav vulnerability

6 documents6 sources
Severity
5.0MEDIUMNVD
EPSS
1.3%
top 20.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
ClamavClam Anti-virus Clamav
Timeline
PublishedMay 2
Latest updateMay 1

Description

ClamAV 0.80 and earlier allows remote attackers to cause a denial of service (clamd daemon crash) via a ZIP file with malformed headers.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

Debianclamav/clamav< 0.80-0.81rc1-1+3
NVDclam_anti-virus/clamav10 versions+9

Patches

Patch: distro.conectiva.com.brPatch: sourceforge.netPatch: www.gentoo.org

🔴Vulnerability Details

3
GHSA
GHSA-f22c-rppr-jp86: ClamAV 02022-05-01
OSV
CVE-2005-0133: ClamAV 02005-05-02
CVEList
CVE-2005-0133: ClamAV 02005-02-06

💥Exploits & PoCs

1
Exploit-DB
IBM AIX 5.3 - 'GetShell' / 'GetCommand' File Disclosure2006-01-01

📋Vendor Advisories

1
Debian
CVE-2005-0133: clamav - ClamAV 0.80 and earlier allows remote attackers to cause a denial of service (cl...2005
CVE-2005-0133 — Clam Anti-virus Clamav vulnerability | cvebase