cbcvebase.
CVE-2007-6595
published 2007-12-31

CVE-2007-6595: ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in…

PriorityP49low2.1CVSS 2.0
AVLACLAuNCNIPAN
EPSS
0.41%
32.4th percentile
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.

Affected

6 ranges
VendorProductVersion rangeFixed in
clam_anti-virusclamav
clamavclamav>= 0 < 0.92.1~dfsg-10.92.1~dfsg-1
clamavclamav>= 0 < 0.92.1~dfsg-10.92.1~dfsg-1
clamavclamav>= 0 < 0.92.1~dfsg-10.92.1~dfsg-1
clamavclamav>= 0 < 0.92.1~dfsg-10.92.1~dfsg-1
debianclamav< clamav 0.92.1~dfsg-1 (bookworm)clamav 0.92.1~dfsg-1 (bookworm)

CVSS provenance

nvdv2.02.1LOWAV:L/AC:L/Au:N/C:N/I:P/A:N
osv2.1LOW
vendor_debian2.1LOW
vendor_redhat2.1LOW
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.