CVE-2008-1835
published 2008-04-16CVE-2008-1835: ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but…
PriorityP425medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
4.03%
89.3th percentile
ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar.
Affected
65 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| clam_anti-virus | clamav | <= 0.92.1 | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
| clam_anti-virus | clamav | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
clamav: scanning engine bypass via crafted RAR file
vendor_redhat·2008-04-15·CVSS 5.0
CVE-2008-1835 [MEDIUM] clamav: scanning engine bypass via crafted RAR file
clamav: scanning engine bypass via crafted RAR file
ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar.
Debian
CVE-2008-1835: clamav - ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a R...
vendor_debian·2008·CVSS 5.0
CVE-2008-1835 [MEDIUM] CVE-2008-1835: clamav - ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a R...
ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
GHSA
GHSA-xrjm-v355-frfj: ClamAV before 0
ghsa_unreviewed·2022-05-01
CVE-2008-1835 [MEDIUM] CWE-20 GHSA-xrjm-v355-frfj: ClamAV before 0
ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar.
No detection rules found.
No public exploits indexed.
http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.htmlhttp://secunia.com/advisories/29891http://secunia.com/advisories/30328http://secunia.com/advisories/31576http://secunia.com/advisories/31882http://security.gentoo.org/glsa/glsa-200805-19.xmlhttp://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.htmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2008:088http://www.securityfocus.com/bid/28784http://www.us-cert.gov/cas/techalerts/TA08-260A.htmlhttp://www.vupen.com/english/advisories/2008/2584https://exchange.xforce.ibmcloud.com/vulnerabilities/41874https://wwws.clamav.net/bugzilla/show_bug.cgi?id=541http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.htmlhttp://lists.opensuse.org/opensuse-security-announce/2008-04/msg00009.htmlhttp://secunia.com/advisories/29891http://secunia.com/advisories/30328http://secunia.com/advisories/31576http://secunia.com/advisories/31882http://security.gentoo.org/glsa/glsa-200805-19.xmlhttp://up2date.astaro.com/2008/08/up2date_asg_v7300_ga_released.htmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2008:088http://www.securityfocus.com/bid/28784http://www.us-cert.gov/cas/techalerts/TA08-260A.htmlhttp://www.vupen.com/english/advisories/2008/2584https://exchange.xforce.ibmcloud.com/vulnerabilities/41874https://wwws.clamav.net/bugzilla/show_bug.cgi?id=541
2008-04-16
Published