VDB
CVE-2011-2721
CVE-2011-2721
PUBLISHED
CVSS 5 MEDIUM
Off-by-one error in the cli_hm_scan function in matcher-hash.c in libclamav in ClamAV before 0.97.2 allows remote attackers to cause a denial of service (daemon crash) via an e-mail message that is not properly handled during certain hash calculations.
EPSS 7.43% · 91.9th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
7.43%
91.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| clamav | clamav | 0.85, 0.01, 0.02 |
| n/a | n/a | n/a |
Exploit Intelligence
- 45382 (circl)
- FEDORA-2011-15033 (circl)
- http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=blob_plain%3Bf=ChangeLog%3Bhb=clamav-0.97.2 (circl)
- 1025858 (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=725694 (circl)
- USN-1179-1 (circl)
- https://bugzilla.novell.com/show_bug.cgi?id=708263 (circl)
- 46717 (circl)
- [oss-security] 20110726 CVE Request -- Clam AntiVirus -- v0.97.2 -- Off-by-one error by scanning message hashes (circl)
- clamav-scan-dos(68785) (circl)
…and 8 more exploits
Timeline
- Aug 5, 2011 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 45382 third-party-advisory
- FEDORA-2011-15033 vendor-advisory
- http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=blob_plain%3Bf=ChangeLog%3Bhb=clamav-0.97.2 url
- 1025858 vdb
- https://bugzilla.redhat.com/show_bug.cgi?id=725694 url
- USN-1179-1 vendor-advisory
- https://bugzilla.novell.com/show_bug.cgi?id=708263 url
- 46717 third-party-advisory
- [oss-security] 20110726 CVE Request -- Clam AntiVirus -- v0.97.2 -- Off-by-one error by scanning message hashes mailing-list
- clamav-scan-dos(68785) vdb
- http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commit%3Bh=4842733eb3f09be61caeed83778bb6679141dbc5 url
- FEDORA-2011-15076 vendor-advisory
- FEDORA-2011-15119 vendor-advisory
- [oss-security] 20110726 Re: CVE Request -- Clam AntiVirus -- v0.97.2 -- Off-by-one error by scanning message hashes mailing-list
- 48891 vdb
- https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2818 url
- 74181 vdb
- MDVSA-2011:122 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2011-2721 advisory
- http://git.clamav.net/gitweb?p=clamav-devel.git;a=blob_plain;f=ChangeLog;hb=clamav-0.97.2 url
…and 1 more