ClamAV.UPX.Heap.Buffer.Overflow
Description
This indicates an attack attempt against a heap-based buffer-overflow vulnerability in Clam AntiVirus.
The vulnerability exists in the pefromupx function in libclamav/upx.c. It is caused by insufficient checking of user-supplied input before the vulnerable software copies it to an insufficient buffer. It allows a remote attacker to execute arbitrary code via sending a crafted UPX packed file.
Affected Products
Clam AntiVirus 0.8.8.2
Clam AntiVirus 0.8.8.3
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade the Clam AntiVirus.
http://www.clamav.net/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |