CVE-2007-6337 — Anti-virus Clamav vulnerability

8 documents8 sources

Severity

10.0CRITICALNVD

EPSS

2.9%

top 13.73%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Clamav Clam Anti-virus Clamav

Timeline

PublishedDec 31

Latest updateMay 1

Description

Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private.h in ClamAV before 0.92 has unknown impact and remote attack vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶Debianclamav/clamav< 0.92~dfsg-1~volatile2+3

▶NVDclam_anti-virus/clamav0.91.2

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-4hxv-f5v9-4fjq: Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private↗2022-05-01

▶

CVEList

CVE-2007-6337: Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private↗2007-12-31

▶

OSV

CVE-2007-6337: Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_private↗2007-12-31

▶

💥Exploits & PoCs

Exploit-DB

Joomla! Component Volunteer 2.0 - SQL Injection↗2008-12-22

▶

📋Vendor Advisories

Red Hat

clamav: undocumented bzlib issue↗2007-12-19

▶

Debian

CVE-2007-6337: clamav - Unspecified vulnerability in the bzip2 decompression algorithm in nsis/bzlib_pri...↗2007

▶

💬Community

Bugzilla

CVE-2007-6337 clamav: undocumented bzlib issue↗2007-12-20

▶