CVE Vulnerability

CVE-2007-6029

Unspecified vulnerability in ClamAV 0.91.1 and 0.91.2 allows remote attackers to execute arbitrary code via a crafted e-mail message. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendors or release actionable advisories. A CVE has been assigned for tracking purposes, but duplicates with other CVEs are difficult to determine.

7.5 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 6.4

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

Scope

References
Link Resource
http://wabisabilabi.blogspot.com/2007/11/focus-on-clamav-remote-code-execution.html
http://wslabi.com/wabisabilabi/showBidInfo.do?code=ZD-00000069
http://www.securityfocus.com/bid/26463
Configurations

Configuration 1

cpe:2.3:a:clam_anti-virus:clamav:0.91.2:*:*:*:*:*:*:*
cpe:2.3:a:clam_anti-virus:clamav:0.91.1:*:*:*:*:*:*:*
Information

Published : 2007-11-20 02:46

Updated : 2008-09-05 09:32

NVD link : CVE-2007-6029

Mitre link : CVE-2007-6029

Products Affected
No products.
CWE
CWE-94