CVE-2007-3025 — Anti-virus Clamav vulnerability

4 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

0.8%

top 25.56%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Clam Anti-virus Clamav

Timeline

PublishedJun 7

Latest updateMay 1

Description

Unspecified vulnerability in libclamav/phishcheck.c in ClamAV before 0.90.3 and 0.91 before 0.91rc1, when running on Solaris, allows remote attackers to cause a denial of service (hang) via unknown vectors related to the isURL function and regular expressions.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDclam_anti-virus/clamav6 versions+5

Patches

Patch: kolab.org ↗Patch: lurker.clamav.net ↗Patch: kolab.org ↗

🔴Vulnerability Details

GHSA

GHSA-2r2x-23j6-jmj3: Unspecified vulnerability in libclamav/phishcheck↗2022-05-01

▶

CVEList

CVE-2007-3025: Unspecified vulnerability in libclamav/phishcheck↗2007-06-07

▶

📋Vendor Advisories

Debian

CVE-2007-3025: clamav - Unspecified vulnerability in libclamav/phishcheck.c in ClamAV before 0.90.3 and ...↗2007

▶