CVE-2013-2020 — Improper Input Validation in Clamav

CWE-189 CWE-20 — Improper Input Validation19 documents12 sources

Severity

5.0MEDIUMNVD

GHSA7.5

EPSS

7.7%

top 8.05%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Clamav Joyent Json Canonical Ubuntu Linux +1 more

Timeline

PublishedMay 13

Latest updateMay 17

Description

Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages4 packages

▶Debianclamav/clamav< 0.97.8+dfsg-1+3

▶NVDclamav/clamav0.97.7+39

▶RubyGemsjoyent/json< 2.3.0

▶NVDsuse/linux_enterprise_server11.0

Also affects: Ubuntu Linux 10.04, 11.10, 12.04, 12.10, 13.04

Patches

Patch: blog.clamav.net ↗Patch: blog.clamav.net ↗

🔴Vulnerability Details

GHSA

GHSA-3fch-7wxv-99j8: Integer underflow in the cli_scanpe function in pe↗2022-05-17

▶

GHSA

Unsafe object creation in json RubyGem↗2020-07-27

▶

CVEList

CVE-2013-2020: Integer underflow in the cli_scanpe function in pe↗2013-05-13

▶

OSV

CVE-2013-2020: Integer underflow in the cli_scanpe function in pe↗2013-05-13

▶

💥Exploits & PoCs

Exploit-DB

IcoFX 2.6 - '.ico' Buffer Overflow SEH + DEP Bypass using JOP↗2021-06-07

▶

Exploit-DB

Apache Struts 2 - DefaultActionMapper Prefixes OGNL Code Execution↗2020-10-20

▶

Exploit-DB

Microsoft SharePoint Server 2019 - Remote Code Execution↗2020-08-17

▶

Exploit-DB

UBICOD Medivision Digital Signage 1.5.1 - Authorization Bypass↗2020-07-23

▶

📋Vendor Advisories

Red Hat

php: multiple vulnerabilities in gdImageCrop()↗2014-02-06

▶

Ubuntu

ClamAV vulnerabilities↗2013-05-03

▶

Debian

CVE-2013-2020: clamav - Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 all...↗2013

▶

💬Community

Bugzilla

CVE-2013-7489 python-beaker: Deserialization of Untrusted Data which can lead to Arbitrary code execution↗2020-06-23

▶

Bugzilla

CVE-2013-2020 CVE-2013-2021 clamav: Multiple potential security issues fixed in upstream 0.97.8 version↗2013-04-24

▶