CVE-2010-4260Clamav vulnerability

11 documents6 sources
Severity
7.5HIGHNVD
NVD5.0OSV5.0
EPSS
9.2%
top 7.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
ClamavDebian Clamav
Timeline
PublishedDec 7
Latest updateMay 17

Description

Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV before 0.96.5 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, aka (1) "bb #2358" and (2) "bb #2396."

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

debiandebian/clamav< clamav 0.96.5+dfsg-1 (bookworm)
Debianclamav/clamav< 0.96.5+dfsg-1+3
NVDclamav/clamav0.96.4+89

🔴Vulnerability Details

4
GHSA
GHSA-wxr2-5mq6-gvcq: Unspecified vulnerability in pdf2022-05-17
GHSA
GHSA-2c2w-ghqr-g6hj: Multiple unspecified vulnerabilities in pdf2022-05-17
OSV
CVE-2010-4479: Unspecified vulnerability in pdf2010-12-07
OSV
CVE-2010-4260: Multiple unspecified vulnerabilities in pdf2010-12-07

📋Vendor Advisories

3
Ubuntu
ClamAV vulnerabilities2010-12-10
Debian
CVE-2010-4479: clamav - Unspecified vulnerability in pdf.c in libclamav in ClamAV before 0.96.5 allows r...2010
Debian
CVE-2010-4260: clamav - Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV before 0.96...2010

💬Community

2
Bugzilla
CVE-2010-4260 CVE-2010-4261 CVE-2010-4479 clamav: multiple flaws corrected in 0.96.5 [fedora-all]2010-12-03
Bugzilla
CVE-2010-4260 CVE-2010-4261 CVE-2010-4479 clamav: multiple flaws corrected in 0.96.52010-12-03