Main Vulnerability Database Vulnerabilities #VU11216

Heap-based buffer overflow in ClamAV - CVE-2017-6419

Published: March 18, 2018 / Updated: March 22, 2018

Vulnerability identifier: #VU11216

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

CVE-ID: CVE-2017-6419

CWE-ID: CWE-122

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: ClamAV

Affected software:
ClamAV

Detailed vulnerability description

The vulnerability allows a remote attacker to cause DoS condition or execute arbitrary code on the target system.

The weakness exists due to heap-based buffer overflow. A remote attacker can send a specially crafted CHM file, trick the victim into opening it and cause the service to crash or execute arbitrary code with elevated privileges.

Successful exploitation of the vulnerability may result in system compromise.

How to mitigate CVE-2017-6419

Update to version 0.99.3 or later.

Sources

https://github.com/varsleak/varsleak-vul/blob/master/clamav-vul/heap-overflow/clamav_chm_crash.md

Heap-based buffer overflow in ClamAV - CVE-2017-6419

Detailed vulnerability description

How to mitigate CVE-2017-6419

Sources

Please verify you're human