CVE-2007-6596
published 2007-12-31CVE-2007-6596: ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass the scanner via a Base64-UUEncoded file.
PriorityP429medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
2.33%
81.4th percentile
ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass the scanner via a Base64-UUEncoded file.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| clam_anti-virus | clamav | — | — |
| clamav | clamav | >= 0 < 0.92.1~dfsg-1 | 0.92.1~dfsg-1 |
| clamav | clamav | >= 0 < 0.92.1~dfsg-1 | 0.92.1~dfsg-1 |
| clamav | clamav | >= 0 < 0.92.1~dfsg-1 | 0.92.1~dfsg-1 |
| clamav | clamav | >= 0 < 0.92.1~dfsg-1 | 0.92.1~dfsg-1 |
| debian | clamav | < clamav 0.92.1~dfsg-1 (bookworm) | clamav 0.92.1~dfsg-1 (bookworm) |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-m5g7-g5cj-mjrh: ClamAV 0
ghsa_unreviewed·2022-05-01
CVE-2007-6596 [MEDIUM] CWE-20 GHSA-m5g7-g5cj-mjrh: ClamAV 0
ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass the scanner via a Base64-UUEncoded file.
OSV
CVE-2007-6596: ClamAV 0
osv·2007-12-31·CVSS 5.0
CVE-2007-6596 [MEDIUM] CVE-2007-6596: ClamAV 0
ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass the scanner via a Base64-UUEncoded file.
Debian
CVE-2007-6596: clamav - ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote at...
vendor_debian·2007·CVSS 5.0
CVE-2007-6596 [MEDIUM] CVE-2007-6596: clamav - ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote at...
ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass the scanner via a Base64-UUEncoded file.
Scope: local
bookworm: resolved (fixed in 0.92.1~dfsg-1)
bullseye: resolved (fixed in 0.92.1~dfsg-1)
forky: resolved (fixed in 0.92.1~dfsg-1)
sid: resolved (fixed in 0.92.1~dfsg-1)
trixie: resolved (fixed in 0.92.1~dfsg-1)
Red Hat
clamav does not recognize Base64-UUEncoded files
vendor_redhat·CVSS 5.0
CVE-2007-6596 [MEDIUM] clamav does not recognize Base64-UUEncoded files
clamav does not recognize Base64-UUEncoded files
ClamAV 0.92 does not recognize Base64 UUEncoded archives, which allows remote attackers to bypass the scanner via a Base64-UUEncoded file.
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.htmlhttp://secunia.com/advisories/29891http://securityreason.com/securityalert/3501http://www.securityfocus.com/archive/1/485631/100/0/threadedhttp://www.securityfocus.com/bid/27064http://www.securitytracker.com/id?1019148https://exchange.xforce.ibmcloud.com/vulnerabilities/39337http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.htmlhttp://secunia.com/advisories/29891http://securityreason.com/securityalert/3501http://www.securityfocus.com/archive/1/485631/100/0/threadedhttp://www.securityfocus.com/bid/27064http://www.securitytracker.com/id?1019148https://exchange.xforce.ibmcloud.com/vulnerabilities/39337
2007-12-31
Published