← voltar
CVE-2007-1745

CVE-2007-1745

EPSS 2.3%
The chm_decompress_stream function in libclamav/chmunpack.c in Clam AntiVirus (ClamAV) before 0.90.2 leaks file descriptors, which has unknown impact and attack vectors involving a crafted CHM file, a different vulnerability than CVE-2007-0897. NOTE: some of these details are obtained from third party information.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://docs.info.apple.com/article.html?artnum=307562http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.htmlhttp://osvdb.org/34913http://secunia.com/advisories/24891http://secunia.com/advisories/24920http://secunia.com/advisories/24946http://secunia.com/advisories/24996http://secunia.com/advisories/25022http://secunia.com/advisories/25028http://secunia.com/advisories/25189http://secunia.com/advisories/29420http://security.gentoo.org/glsa/glsa-200704-21.xml