VDB
CVE-2006-1615
CVE-2006-1615
PUBLISHED
CVSS 10 CRITICAL
Multiple format string vulnerabilities in the logging code in Clam AntiVirus (ClamAV) before 0.88.1 might allow remote attackers to execute arbitrary code. NOTE: as of 20060410, it is unclear whether this is a vulnerability, as there is some evidence that the arguments are actually being sanitized properly.
EPSS 36.76% · 97.2th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
36.76%
97.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| clamav | clamav | 0.86, 0, 0.01 |
| n/a | n/a | n/a |
Timeline
- Apr 6, 2006 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 1, 2022 CVE Updated
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 18, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- 19567 third-party-advisory
- 17951 vdb
- ADV-2006-1258 vdb
- ADV-2006-1779 vdb
- TA06-132A third-party-advisory
- http://sourceforge.net/project/shownotes.php?release_id=407078&group_id=86638 url
- 24458 vdb
- 19570 third-party-advisory
- http://up2date.astaro.com/2006/05/low_up2date_6202.html url
- GLSA-200604-06 vendor-advisory
- 19608 third-party-advisory
- 19534 third-party-advisory
- 19564 third-party-advisory
- 19536 third-party-advisory
- APPLE-SA-2006-05-11 vendor-advisory
- SUSE-SA:2006:020 vendor-advisory
- MDKSA-2006:067 vendor-advisory
- 17388 vdb
- DSA-1024 vendor-advisory
- 23719 third-party-advisory
…and 4 more