CVE-2006-2427
published 2006-05-17CVE-2006-2427: freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier does not drop privileges before processing the config-file command line…
PriorityP420high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.48%
37.7th percentile
freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of the target file.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamxav | — | — |
| debian | clamav | — | — |
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
vendor_debian7.2LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3ch5-6956-fx84: freshclam in (1) Clam Antivirus (ClamAV) 0
ghsa_unreviewed·2022-05-01
CVE-2006-2427 [HIGH] GHSA-3ch5-6956-fx84: freshclam in (1) Clam Antivirus (ClamAV) 0
freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of the target file.
Debian
CVE-2006-2427: clamav - freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier...
vendor_debian·2006·CVSS 7.2
CVE-2006-2427 [HIGH] CVE-2006-2427: clamav - freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier...
freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of the target file.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/20085http://securityreason.com/securityalert/912http://securitytracker.com/id?1016086http://www.digitalmunition.com/DMA%5B2006-0514a%5D.txthttp://www.securityfocus.com/archive/1/434008/100/0/threadedhttp://www.vupen.com/english/advisories/2006/1807https://exchange.xforce.ibmcloud.com/vulnerabilities/26453http://secunia.com/advisories/20085http://securityreason.com/securityalert/912http://securitytracker.com/id?1016086http://www.digitalmunition.com/DMA%5B2006-0514a%5D.txthttp://www.securityfocus.com/archive/1/434008/100/0/threadedhttp://www.vupen.com/english/advisories/2006/1807https://exchange.xforce.ibmcloud.com/vulnerabilities/26453
2006-05-17
Published