CVE-2007-2029
published 2007-04-30CVE-2007-2029: File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file.
PriorityP424high7.8CVSS 2.0
AVNACLAuNCNINAC
EPSS
3.04%
85.8th percentile
File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| clam_anti-virus | clamav | — | — |
| clamav | clamav | >= 0 < 0.90.2-1 | 0.90.2-1 |
| clamav | clamav | >= 0 < 0.90.2-1 | 0.90.2-1 |
| clamav | clamav | >= 0 < 0.90.2-1 | 0.90.2-1 |
| clamav | clamav | >= 0 < 0.90.2-1 | 0.90.2-1 |
| debian | clamav | < clamav 0.90.2-1 (bookworm) | clamav 0.90.2-1 (bookworm) |
CVSS provenance
nvdv2.07.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
osv7.8HIGH
vendor_debian7.8LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5vxf-6gr7-mr6m: File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file
ghsa_unreviewed·2022-05-01
CVE-2007-2029 [HIGH] GHSA-5vxf-6gr7-mr6m: File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file
File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file.
OSV
CVE-2007-2029: File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file
osv·2007-04-30·CVSS 7.8
CVE-2007-2029 [HIGH] CVE-2007-2029: File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file
File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file.
Debian
CVE-2007-2029: clamav - File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote...
vendor_debian·2007·CVSS 7.8
CVE-2007-2029 [HIGH] CVE-2007-2029: clamav - File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote...
File descriptor leak in the PDF handler in Clam AntiVirus (ClamAV) allows remote attackers to cause a denial of service via a crafted PDF file.
Scope: local
bookworm: resolved (fixed in 0.90.2-1)
bullseye: resolved (fixed in 0.90.2-1)
forky: resolved (fixed in 0.90.2-1)
sid: resolved (fixed in 0.90.2-1)
trixie: resolved (fixed in 0.90.2-1)
No detection rules found.
No public exploits indexed.
http://osvdb.org/34916http://secunia.com/advisories/25028http://secunia.com/advisories/25189http://www.debian.org/security/2007/dsa-1281http://www.mandriva.com/security/advisories?name=MDKSA-2007:098http://www.securityfocus.com/bid/23656https://exchange.xforce.ibmcloud.com/vulnerabilities/34083http://osvdb.org/34916http://secunia.com/advisories/25028http://secunia.com/advisories/25189http://www.debian.org/security/2007/dsa-1281http://www.mandriva.com/security/advisories?name=MDKSA-2007:098http://www.securityfocus.com/bid/23656https://exchange.xforce.ibmcloud.com/vulnerabilities/34083
2007-04-30
Published