Launchpad.net

CVE 2006-0162

Heap-based buffer overflow in libclamav/upx.c in Clam Antivirus (ClamAV) before 0.88 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted UPX files.

Related bugs and status

CVE-2006-0162 (Candidate) is related to these bugs:

Bug #31430: CVE-2006-0162 - Clamav buffer overflow vulnerability

		In	Importance	Status
31430	CVE-2006-0162 - Clamav buffer overflow vulnerability	clamav (Ubuntu)	High	Fix Released
31430	CVE-2006-0162 - Clamav buffer overflow vulnerability	clamav (Ubuntu Breezy)	Medium	Invalid
31430	CVE-2006-0162 - Clamav buffer overflow vulnerability	clamav (Ubuntu Hoary)	Medium	Invalid

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.clamav.net/...
BID: 16191
SECTRACK: 1015457
SECUNIA: 18379
GENTOO: GLSA-200601-07
SECUNIA: 18453
CERT-VN: VU#385908
FULLDISC: 20060112 ZDI-06-001: C...
MISC: http://www.zerodayinit...
DEBIAN: DSA-947
TRUSTIX: 2006-0002
OSVDB: 22318
SECUNIA: 18478
SECUNIA: 18548
SECUNIA: 18463
SREASON: 342
MANDRIVA: MDKSA-2006:016
VUPEN: ADV-2006-0116
XF: clamav-libclamav-upx-b...