CVE-2010-4479Clamav vulnerability

7 documents6 sources
Severity
7.5HIGHNVD
OSV5.0
EPSS
9.2%
top 7.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
ClamavDebian Clamav
Timeline
PublishedDec 7
Latest updateMay 17

Description

Unspecified vulnerability in pdf.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document, aka "bb #2380," a different vulnerability than CVE-2010-4260.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

debiandebian/clamav< clamav 0.96.5+dfsg-1 (bookworm)
Debianclamav/clamav< 0.96.5+dfsg-1+3
NVDclamav/clamav0.96.4+89

🔴Vulnerability Details

2
GHSA
GHSA-wxr2-5mq6-gvcq: Unspecified vulnerability in pdf2022-05-17
OSV
CVE-2010-4479: Unspecified vulnerability in pdf2010-12-07

📋Vendor Advisories

2
Ubuntu
ClamAV vulnerabilities2010-12-10
Debian
CVE-2010-4479: clamav - Unspecified vulnerability in pdf.c in libclamav in ClamAV before 0.96.5 allows r...2010

💬Community

2
Bugzilla
CVE-2010-4260 CVE-2010-4261 CVE-2010-4479 clamav: multiple flaws corrected in 0.96.5 [fedora-all]2010-12-03
Bugzilla
CVE-2010-4260 CVE-2010-4261 CVE-2010-4479 clamav: multiple flaws corrected in 0.96.52010-12-03