CVE-2005-3303Out-of-bounds Write in Anti-virus Clamav

5 documents5 sources
Severity
7.5HIGHNVD
EPSS
9.9%
top 6.96%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
ClamavClam Anti-virus Clamav
Timeline
PublishedNov 5
Latest updateMay 1

Description

The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

Debianclamav/clamav< 0.87.1-1+3
NVDclam_anti-virus/clamav11 versions+10

Patches

Patch: archives.neohapsis.comPatch: secunia.comPatch: sourceforge.net

🔴Vulnerability Details

3
GHSA
GHSA-2q9p-89g6-mqmh: The FSG unpacker (fsg2022-05-01
OSV
CVE-2005-3303: The FSG unpacker (fsg2005-11-05
CVEList
CVE-2005-3303: The FSG unpacker (fsg2005-11-05

📋Vendor Advisories

1
Debian
CVE-2005-3303: clamav - The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows rem...2005
CVE-2005-3303 — Out-of-bounds Write | cvebase