#VU36018 Path traversal in ClamAV
Vulnerability identifier: #VU36018
Vulnerability risk: High
CVSSv3.1: 7.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-22
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
ClamAV
Client/Desktop applications /
Antivirus software/Personal firewalls
Vendor: ClamAV
Description
The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.
A vulnerability in the RAR file scanning functionality of Clam AntiVirus (ClamAV) Software versions 0.101.1 and 0.101.0 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a lack of proper error-handling mechanisms when processing nested RAR files sent to an affected device. An attacker could exploit this vulnerability by sending a crafted RAR file to an affected device. An exploit could allow the attacker to view or create arbitrary files on the targeted system.
Mitigation
Install update from vendor's website.
Vulnerable software versions
ClamAV: 0.101.0 - 0.101.1
External links
http://bugzilla.clamav.net/show_bug.cgi?id=12284
http://security.gentoo.org/glsa/201904-12
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
