Launchpad CVE tracker

CVE 2008-1100

Buffer overflow in the cli_scanpe function in libclamav (libclamav/pe.c) for ClamAV 0.92 and 0.92.1 allows remote attackers to execute arbitrary code via a crafted Upack PE file.

Related bugs and status

CVE-2008-1100 (Candidate) is related to these bugs:

Bug #217256: ClamAV Upack Processing Buffer Overflow Vulnerability

		In	Importance	Status
217256	ClamAV Upack Processing Buffer Overflow Vulnerability	clamav (Ubuntu)	Medium	Fix Released
217256	ClamAV Upack Processing Buffer Overflow Vulnerability	clamav (Ubuntu Dapper)	Undecided	Fix Released
217256	ClamAV Upack Processing Buffer Overflow Vulnerability	clamav (Ubuntu Edgy)	Undecided	Won't Fix
217256	ClamAV Upack Processing Buffer Overflow Vulnerability	clamav (Ubuntu Feisty)	Medium	Fix Released
217256	ClamAV Upack Processing Buffer Overflow Vulnerability	clamav (Ubuntu Gutsy)	Undecided	Fix Released

Bug #217361: Buffer Overflow in cli_scanpe function remote attack

Summary				In	Importance	Status
	217361	Buffer Overflow in cli_scanpe function remote attack		clamav (Ubuntu)	Undecided	New

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2008-1100

References