Denial of Service Vulnerability in ClamAV by Cisco Systems
CVE-2011-3627

Currently unrated

Key Information:

Vendor: Clamav
Status: Clamav
Vendor: CVE Published:; 17 November 2011

What is CVE-2011-3627?

A vulnerability in the bytecode engine of ClamAV allows remote attackers to trigger a denial of service, causing the system to crash. This issue arises from specific aspects of recursion levels in the processing code. Attackers can exploit this vulnerability through crafted inputs, affecting the stability of the ClamAV application.

References

http://lists.fedoraproject.org/pipermail/package-announce...

vendor-advisoryx_refsource_FEDORA

https://bugzilla.redhat.com/show_bug.cgi?id=746984

x_refsource_MISC

http://www.securityfocus.com/bid/50183

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 17, 2011
Vulnerability Reserved
Sep 21, 2011

Clamav

What is CVE-2011-3627?

References

Timeline