VDB
CVE-2006-5295
CVE-2006-5295
PUBLISHED
CVSS 5 MEDIUM
Unspecified vulnerability in ClamAV before 0.88.5 allows remote attackers to cause a denial of service (scanning service crash) via a crafted Compressed HTML Help (CHM) file that causes ClamAV to "read an invalid memory location."
EPSS 26.55% · 96.4th percentile
Risk Scores
CVSS v2.0
5
EPSS Score
26.55%
96.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| clam_anti-virus | clamav | 0, ., 0.21 |
Timeline
- Oct 16, 2006 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 17, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Apr 1, 2023 EPSS Score
- May 24, 2023 EPSS Score
- Aug 20, 2023 EPSS Score
- Sep 6, 2023 EPSS Score
- Dec 20, 2023 EPSS Score
References
- ADV-2006-4034 vdb
- 22488 third-party-advisory
- 22370 third-party-advisory
- SUSE-SA:2006:060 vendor-advisory
- 20061016 Clam AntiVirus ClamAV CHM Chunk Name Length DoS Vulnerability third-party-advisory
- 20537 vdb
- MDKSA-2006:184 vendor-advisory
- 22626 third-party-advisory
- ADV-2006-4136 vdb
- clamav-chm-dos(29608) vdb
- 22421 third-party-advisory
- ADV-2006-4264 vdb
- http://kolab.org/security/kolab-vendor-notice-13.txt url
- GLSA-200610-10 vendor-advisory
- 1017068 vdb
- DSA-1196 vendor-advisory
- 22551 third-party-advisory
- 22537 third-party-advisory
- 22498 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2006-5295 advisory