CVE-2016-1372
Description
ClamAV (aka Clam AntiVirus) before 0.99.2 allows remote attackers to cause a denial of service (application crash) via a crafted 7z file.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.429
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2016-1371,CVE-2016-1372 are affected in Clamav 0.99.1 | Windows |
| Anti-virus utility for Unix (USN-1482-1) clamav-daemon_0.99.2+addedllvm-0ubuntu0.12.04.1_i386.deb | Linux |
| Anti-virus utility for Unix (USN-1482-1) clamav-daemon_0.99.2+addedllvm-0ubuntu0.12.04.1_amd64.deb | Linux |
| Anti-virus utility for Unix (USN-3093-1) clamav_0.99.2+addedllvm-0ubuntu0.12.04.1_i386.deb | Linux |
| Anti-virus utility for Unix (USN-3093-1) clamav_0.99.2+addedllvm-0ubuntu0.12.04.1_amd64.deb | Linux |
| SUSE-SU-2018:0464-1(SUSE Linux Enterprise Desktop 12-SP2 ) p7zip-9.20.1-7.3.1.x86_64.rpm | Linux |
| SUSE-SU-2018:0464-1(SUSE Linux Enterprise Desktop 12-SP2 ) p7zip-debuginfo-9.20.1-7.3.1.x86_64.rpm | Linux |
| SUSE-SU-2018:0464-1(SUSE Linux Enterprise Desktop 12-SP2 ) p7zip-debugsource-9.20.1-7.3.1.x86_64.rpm | Linux |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-341177 | ClamAV (0.103.12) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234