NVD Vulnerability Detail

CVE-2006-4182

Summary	Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected.
Summary	This vulnerability is addressed in the following product release: Clam Anti-Virus, ClamAV, 0.88.5
Publication Date	Oct. 17, 2006, 8:07 a.m.
Registration Date	Jan. 29, 2021, 3:43 p.m.
Last Update	July 20, 2017, 10:32 a.m.

CVSS2.0 : HIGH
Score	7.5
Vector	AV:N/AC:L/Au:N/C:P/I:P/A:P
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	低
完全性への影響(I)	低
可用性への影響(A)	低
Get all privileges.	いいえ
Get user privileges	はい
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:clam_anti-virus:clamav:.:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.15:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.20:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.21:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.22:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.23:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.24:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.51:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.52:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.53:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.54:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.60:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.60p:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.65:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.67:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.68:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.68.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.70:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.71:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.72:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.73:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.74:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.75:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.75.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.80:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc2:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc3:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc4:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.81:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.81_rc1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.82:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.83:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.84:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.84_rc1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.84_rc2:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.85:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.85.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.86:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.86.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.86.2:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.86_rc1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.87:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.87.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.88:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.88.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.88.3:::::::*
cpe:2.3:a:clam_anti-virus:clamav::::::::		0.88.4

Related information, measures and tools

No	URL	refsource	タグ
1	http://docs.info.apple.com/article.html?artnum=304829	CONFIRM
2	http://kolab.org/security/kolab-vendor-notice-13.txt	CONFIRM
3	http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422	IDEFENSE	Patch Vendor Advisory
4	http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html	APPLE
5	http://secunia.com/advisories/22370	SECUNIA
6	http://secunia.com/advisories/22421	SECUNIA
7	http://secunia.com/advisories/22488	SECUNIA
8	http://secunia.com/advisories/22498	SECUNIA
9	http://secunia.com/advisories/22537	SECUNIA
10	http://secunia.com/advisories/22551	SECUNIA
11	http://secunia.com/advisories/22626	SECUNIA
12	http://secunia.com/advisories/23155	SECUNIA
13	http://security.gentoo.org/glsa/glsa-200610-10.xml	GENTOO
14	http://securitytracker.com/id?1017068	SECTRACK
15	http://www.debian.org/security/2006/dsa-1196	DEBIAN
16	http://www.kb.cert.org/vuls/id/180864	CERT-VN	US Government Resource
17	http://www.mandriva.com/security/advisories?name=MDKSA-2006:184	MANDRIVA
18	http://www.novell.com/linux/security/advisories/2006_60_clamav.html	SUSE
19	http://www.securityfocus.com/bid/20535	BID
20	http://www.us-cert.gov/cas/techalerts/TA06-333A.html	CERT	US Government Resource
21	http://www.vupen.com/english/advisories/2006/4034	VUPEN
22	http://www.vupen.com/english/advisories/2006/4136	VUPEN
23	http://www.vupen.com/english/advisories/2006/4264	VUPEN
24	http://www.vupen.com/english/advisories/2006/4750	VUPEN
25	https://exchange.xforce.ibmcloud.com/vulnerabilities/29607	XF

Common Vulnerabilities List

JVN Vulnerability Information

ClamAV における整数オーバーフローの脆弱性

Title	ClamAV における整数オーバーフローの脆弱性
Summary	ClamAV には、整数オーバーフローの脆弱性が存在します。
Possible impacts	第三者により、巧妙に細工された Portable Executable (PE) ファイルを介して、必要量より少ないメモリ割り当てが発生した際、ヒープベースのバッファオーバーフローを誘発され、サービス運用妨害 (スキャンサービスクラッシュ) 状態にされる、および任意のコードを実行される可能性があります。
Solution	ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date	Oct. 16, 2006, midnight
Registration Date	June 26, 2012, 3:37 p.m.
Last Update	June 26, 2012, 3:37 p.m.

Affected System

ClamAV

ClamAV 0.88.1、0.88.4、および 0.88.5 未満のその他のバージョン

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2006-4182	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4182
National Vulnerability Database (NVD)
2	CVE-2006-4182	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-4182

ベンダー情報

No	Name	URL
ClamAV
1	Top Page	http://www.clamav.net/lang/en/

その他

No	Name	URL
US-CERT Technical Cyber Security Alert
1	TA06-333A	http://www.us-cert.gov/cas/techalerts/TA06-333A.html
US-CERT Vulnerability Note
2	http://www.kb.cert.org/vuls/id/180864	VU#180864

Change Log

No	Changed Details	Date of change
0	[2012年06月26日] 掲載	Feb. 17, 2018, 10:37 a.m.

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:clam_anti-virus:clamav:.:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.15:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.20:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.21:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.22:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.23:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.24:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.51:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.52:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.53:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.54:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.60:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.60p:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.65:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.67:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.68:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.68.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.70:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.71:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.72:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.73:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.74:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.75:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.75.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.80:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc2:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc3:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.80_rc4:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.81:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.81_rc1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.82:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.83:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.84:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.84_rc1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.84_rc2:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.85:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.85.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.86:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.86.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.86.2:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.86_rc1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.87:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.87.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.88:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.88.1:::::::*
cpe:2.3:a:clam_anti-virus:clamav:0.88.3:::::::*
cpe:2.3:a:clam_anti-virus:clamav::::::::		0.88.4