CVE-2016-1405
published 2016-06-08CVE-2016-1405: libclamav in ClamAV (aka Clam AntiVirus), as used in Advanced Malware Protection (AMP) on Cisco Email Security Appliance (ESA) devices before 9.7.0-125 and Web…
high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
libclamav in ClamAV (aka Clam AntiVirus), as used in Advanced Malware Protection (AMP) on Cisco Email Security Appliance (ESA) devices before 9.7.0-125 and Web Security Appliance (WSA) devices before 9.0.1-135 and 9.1.x before 9.1.1-041, allows remote attackers to cause a denial of service (AMP process restart) via a crafted document, aka Bug IDs CSCuv78533 and CSCuw60503.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | email_security_appliance | — | — |
| cisco | esa_and_wsa_amp_clamav | — | — |
| cisco | web_security_appliance | — | — |
| cisco | web_security_appliance | — | — |
| cisco | web_security_appliance | — | — |
| clamav | clamav | >= 0 < 0.99+dfsg-1 | 0.99+dfsg-1 |
| clamav | clamav | >= 0 < 0.99+dfsg-1 | 0.99+dfsg-1 |
| clamav | clamav | >= 0 < 0.99+dfsg-1 | 0.99+dfsg-1 |
| clamav | clamav | >= 0 < 0.99+dfsg-1 | 0.99+dfsg-1 |
| debian | clamav | < clamav 0.99+dfsg-1 (bookworm) | clamav 0.99+dfsg-1 (bookworm) |
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH