Floating Point Exception in ClamAV Products by Verio, Inc.
CVE-2007-6745

9.8CRITICAL

Key Information:

Vendor: Clamav
Status: Clamav
Vendor: CVE Published:; 7 November 2019

What is CVE-2007-6745?

ClamAV version 0.91.2 is susceptible to a floating point exception which can occur when utilizing the ScanOLE2 functionality. This vulnerability may lead to unexpected behavior or crashes, impacting the overall stability and security of the scanning process. Organizations using this version of ClamAV should evaluate the potential risks associated with this vulnerability and consider updating to a secure version to mitigate exposure.

Affected Version(s)

clamav 0.91.2

References

https://security-tracker.debian.org/tracker/CVE-2007-6745

x_refsource_MISC

https://access.redhat.com/security/cve/cve-2007-6745

x_refsource_MISC

http://www.openwall.com/lists/oss-security/2012/03/29/2

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 7, 2019
Vulnerability Reserved
Dec 19, 2011

Clamav

What is CVE-2007-6745?

Affected Version(s)

References

CVSS V3.1

Timeline