Vulnerability-Lookup

CVE-2006-4182 (GCVE-0-2006-4182)

Vulnerability from cvelistv5 – Published: 2006-10-17 03:00 – Updated: 2024-08-07 18:57

Summary

Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.vupen.com/english/advisories/2006/4750	vdb-entryx_refsource_VUPEN
	http://www.vupen.com/english/advisories/2006/4034	vdb-entryx_refsource_VUPEN
	http://secunia.com/advisories/22488	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/22370	third-party-advisoryx_refsource_SECUNIA
	http://www.kb.cert.org/vuls/id/180864	third-party-advisoryx_refsource_CERT-VN
	http://www.novell.com/linux/security/advisories/2…	vendor-advisoryx_refsource_SUSE
	http://docs.info.apple.com/article.html?artnum=304829	x_refsource_CONFIRM
	http://www.mandriva.com/security/advisories?name=…	vendor-advisoryx_refsource_MANDRIVA
	http://secunia.com/advisories/22626	third-party-advisoryx_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2006/4136	vdb-entryx_refsource_VUPEN
	http://secunia.com/advisories/22421	third-party-advisoryx_refsource_SECUNIA
	http://labs.idefense.com/intelligence/vulnerabili…	third-party-advisoryx_refsource_IDEFENSE
	http://www.vupen.com/english/advisories/2006/4264	vdb-entryx_refsource_VUPEN
	http://secunia.com/advisories/23155	third-party-advisoryx_refsource_SECUNIA
	http://kolab.org/security/kolab-vendor-notice-13.txt	x_refsource_CONFIRM
	http://www.securityfocus.com/bid/20535	vdb-entryx_refsource_BID
	http://lists.apple.com/archives/security-announce…	vendor-advisoryx_refsource_APPLE
	http://security.gentoo.org/glsa/glsa-200610-10.xml	vendor-advisoryx_refsource_GENTOO
	http://www.us-cert.gov/cas/techalerts/TA06-333A.html	third-party-advisoryx_refsource_CERT
	http://securitytracker.com/id?1017068	vdb-entryx_refsource_SECTRACK
	http://www.debian.org/security/2006/dsa-1196	vendor-advisoryx_refsource_DEBIAN
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://secunia.com/advisories/22551	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/22537	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/22498	third-party-advisoryx_refsource_SECUNIA

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T18:57:46.415Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "ADV-2006-4750",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/4750"
          },
          {
            "name": "ADV-2006-4034",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/4034"
          },
          {
            "name": "22488",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22488"
          },
          {
            "name": "22370",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22370"
          },
          {
            "name": "VU#180864",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/180864"
          },
          {
            "name": "SUSE-SA:2006:060",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://www.novell.com/linux/security/advisories/2006_60_clamav.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://docs.info.apple.com/article.html?artnum=304829"
          },
          {
            "name": "MDKSA-2006:184",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:184"
          },
          {
            "name": "22626",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22626"
          },
          {
            "name": "ADV-2006-4136",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/4136"
          },
          {
            "name": "22421",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22421"
          },
          {
            "name": "20061016 Clam AntiVirus ClamAV rebuildpe Heap Overflow Vulnerability",
            "tags": [
              "third-party-advisory",
              "x_refsource_IDEFENSE",
              "x_transferred"
            ],
            "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422"
          },
          {
            "name": "ADV-2006-4264",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/4264"
          },
          {
            "name": "23155",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23155"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://kolab.org/security/kolab-vendor-notice-13.txt"
          },
          {
            "name": "20535",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/20535"
          },
          {
            "name": "APPLE-SA-2006-11-28",
            "tags": [
              "vendor-advisory",
              "x_refsource_APPLE",
              "x_transferred"
            ],
            "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
          },
          {
            "name": "GLSA-200610-10",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200610-10.xml"
          },
          {
            "name": "TA06-333A",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT",
              "x_transferred"
            ],
            "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
          },
          {
            "name": "1017068",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1017068"
          },
          {
            "name": "DSA-1196",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2006/dsa-1196"
          },
          {
            "name": "clamav-rebuildpe-bo(29607)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29607"
          },
          {
            "name": "22551",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22551"
          },
          {
            "name": "22537",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22537"
          },
          {
            "name": "22498",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/22498"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-10-16T04:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-19T19:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "ADV-2006-4750",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/4750"
        },
        {
          "name": "ADV-2006-4034",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/4034"
        },
        {
          "name": "22488",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22488"
        },
        {
          "name": "22370",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22370"
        },
        {
          "name": "VU#180864",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/180864"
        },
        {
          "name": "SUSE-SA:2006:060",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://www.novell.com/linux/security/advisories/2006_60_clamav.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://docs.info.apple.com/article.html?artnum=304829"
        },
        {
          "name": "MDKSA-2006:184",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:184"
        },
        {
          "name": "22626",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22626"
        },
        {
          "name": "ADV-2006-4136",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/4136"
        },
        {
          "name": "22421",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22421"
        },
        {
          "name": "20061016 Clam AntiVirus ClamAV rebuildpe Heap Overflow Vulnerability",
          "tags": [
            "third-party-advisory",
            "x_refsource_IDEFENSE"
          ],
          "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422"
        },
        {
          "name": "ADV-2006-4264",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/4264"
        },
        {
          "name": "23155",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23155"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://kolab.org/security/kolab-vendor-notice-13.txt"
        },
        {
          "name": "20535",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/20535"
        },
        {
          "name": "APPLE-SA-2006-11-28",
          "tags": [
            "vendor-advisory",
            "x_refsource_APPLE"
          ],
          "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
        },
        {
          "name": "GLSA-200610-10",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200610-10.xml"
        },
        {
          "name": "TA06-333A",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT"
          ],
          "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
        },
        {
          "name": "1017068",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1017068"
        },
        {
          "name": "DSA-1196",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2006/dsa-1196"
        },
        {
          "name": "clamav-rebuildpe-bo(29607)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29607"
        },
        {
          "name": "22551",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22551"
        },
        {
          "name": "22537",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22537"
        },
        {
          "name": "22498",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/22498"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-4182",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "ADV-2006-4750",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/4750"
            },
            {
              "name": "ADV-2006-4034",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/4034"
            },
            {
              "name": "22488",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22488"
            },
            {
              "name": "22370",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22370"
            },
            {
              "name": "VU#180864",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/180864"
            },
            {
              "name": "SUSE-SA:2006:060",
              "refsource": "SUSE",
              "url": "http://www.novell.com/linux/security/advisories/2006_60_clamav.html"
            },
            {
              "name": "http://docs.info.apple.com/article.html?artnum=304829",
              "refsource": "CONFIRM",
              "url": "http://docs.info.apple.com/article.html?artnum=304829"
            },
            {
              "name": "MDKSA-2006:184",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:184"
            },
            {
              "name": "22626",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22626"
            },
            {
              "name": "ADV-2006-4136",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/4136"
            },
            {
              "name": "22421",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22421"
            },
            {
              "name": "20061016 Clam AntiVirus ClamAV rebuildpe Heap Overflow Vulnerability",
              "refsource": "IDEFENSE",
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422"
            },
            {
              "name": "ADV-2006-4264",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/4264"
            },
            {
              "name": "23155",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23155"
            },
            {
              "name": "http://kolab.org/security/kolab-vendor-notice-13.txt",
              "refsource": "CONFIRM",
              "url": "http://kolab.org/security/kolab-vendor-notice-13.txt"
            },
            {
              "name": "20535",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/20535"
            },
            {
              "name": "APPLE-SA-2006-11-28",
              "refsource": "APPLE",
              "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
            },
            {
              "name": "GLSA-200610-10",
              "refsource": "GENTOO",
              "url": "http://security.gentoo.org/glsa/glsa-200610-10.xml"
            },
            {
              "name": "TA06-333A",
              "refsource": "CERT",
              "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
            },
            {
              "name": "1017068",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1017068"
            },
            {
              "name": "DSA-1196",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2006/dsa-1196"
            },
            {
              "name": "clamav-rebuildpe-bo(29607)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29607"
            },
            {
              "name": "22551",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22551"
            },
            {
              "name": "22537",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22537"
            },
            {
              "name": "22498",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/22498"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-4182",
    "datePublished": "2006-10-17T03:00:00.000Z",
    "dateReserved": "2006-08-16T04:00:00.000Z",
    "dateUpdated": "2024-08-07T18:57:46.415Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

GSD-2006-4182

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2006-4182

Aliases

CVE-2006-4182

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-4182",
    "description": "Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected.",
    "id": "GSD-2006-4182",
    "references": [
      "https://www.suse.com/security/cve/CVE-2006-4182.html",
      "https://www.debian.org/security/2006/dsa-1196"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-4182"
      ],
      "details": "Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected.",
      "id": "GSD-2006-4182",
      "modified": "2023-12-13T01:19:51.398762Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-4182",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "ADV-2006-4750",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/4750"
          },
          {
            "name": "ADV-2006-4034",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/4034"
          },
          {
            "name": "22488",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22488"
          },
          {
            "name": "22370",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22370"
          },
          {
            "name": "VU#180864",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/180864"
          },
          {
            "name": "SUSE-SA:2006:060",
            "refsource": "SUSE",
            "url": "http://www.novell.com/linux/security/advisories/2006_60_clamav.html"
          },
          {
            "name": "http://docs.info.apple.com/article.html?artnum=304829",
            "refsource": "CONFIRM",
            "url": "http://docs.info.apple.com/article.html?artnum=304829"
          },
          {
            "name": "MDKSA-2006:184",
            "refsource": "MANDRIVA",
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:184"
          },
          {
            "name": "22626",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22626"
          },
          {
            "name": "ADV-2006-4136",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/4136"
          },
          {
            "name": "22421",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22421"
          },
          {
            "name": "20061016 Clam AntiVirus ClamAV rebuildpe Heap Overflow Vulnerability",
            "refsource": "IDEFENSE",
            "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422"
          },
          {
            "name": "ADV-2006-4264",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/4264"
          },
          {
            "name": "23155",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23155"
          },
          {
            "name": "http://kolab.org/security/kolab-vendor-notice-13.txt",
            "refsource": "CONFIRM",
            "url": "http://kolab.org/security/kolab-vendor-notice-13.txt"
          },
          {
            "name": "20535",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/20535"
          },
          {
            "name": "APPLE-SA-2006-11-28",
            "refsource": "APPLE",
            "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
          },
          {
            "name": "GLSA-200610-10",
            "refsource": "GENTOO",
            "url": "http://security.gentoo.org/glsa/glsa-200610-10.xml"
          },
          {
            "name": "TA06-333A",
            "refsource": "CERT",
            "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
          },
          {
            "name": "1017068",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1017068"
          },
          {
            "name": "DSA-1196",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2006/dsa-1196"
          },
          {
            "name": "clamav-rebuildpe-bo(29607)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29607"
          },
          {
            "name": "22551",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22551"
          },
          {
            "name": "22537",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22537"
          },
          {
            "name": "22498",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22498"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.20:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.21:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.54:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.60:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.72:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.73:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.80_rc3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.80_rc4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.84_rc2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.85:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.85.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.88:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.88.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:.:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.52:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.53:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.70:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.71:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.80_rc1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.80_rc2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.84:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.84_rc1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.87:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.87.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.24:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.51:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.68:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.68.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.75.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.80:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.82:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.83:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.86.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.86_rc1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.22:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.23:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.60p:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.65:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.67:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.74:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.75:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.81:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.81_rc1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.86:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.86.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.88.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "0.88.4",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-4182"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20061016 Clam AntiVirus ClamAV rebuildpe Heap Overflow Vulnerability",
              "refsource": "IDEFENSE",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422"
            },
            {
              "name": "20535",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/20535"
            },
            {
              "name": "22370",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/22370"
            },
            {
              "name": "SUSE-SA:2006:060",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://www.novell.com/linux/security/advisories/2006_60_clamav.html"
            },
            {
              "name": "1017068",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1017068"
            },
            {
              "name": "22421",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/22421"
            },
            {
              "name": "22498",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/22498"
            },
            {
              "name": "http://kolab.org/security/kolab-vendor-notice-13.txt",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://kolab.org/security/kolab-vendor-notice-13.txt"
            },
            {
              "name": "DSA-1196",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2006/dsa-1196"
            },
            {
              "name": "22488",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/22488"
            },
            {
              "name": "22537",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/22537"
            },
            {
              "name": "GLSA-200610-10",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://security.gentoo.org/glsa/glsa-200610-10.xml"
            },
            {
              "name": "22551",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/22551"
            },
            {
              "name": "22626",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/22626"
            },
            {
              "name": "VU#180864",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/180864"
            },
            {
              "name": "http://docs.info.apple.com/article.html?artnum=304829",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://docs.info.apple.com/article.html?artnum=304829"
            },
            {
              "name": "APPLE-SA-2006-11-28",
              "refsource": "APPLE",
              "tags": [],
              "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
            },
            {
              "name": "TA06-333A",
              "refsource": "CERT",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
            },
            {
              "name": "23155",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/23155"
            },
            {
              "name": "MDKSA-2006:184",
              "refsource": "MANDRIVA",
              "tags": [],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:184"
            },
            {
              "name": "ADV-2006-4136",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/4136"
            },
            {
              "name": "ADV-2006-4264",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/4264"
            },
            {
              "name": "ADV-2006-4750",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/4750"
            },
            {
              "name": "ADV-2006-4034",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/4034"
            },
            {
              "name": "clamav-rebuildpe-bo(29607)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29607"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": true,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-07-20T01:32Z",
      "publishedDate": "2006-10-16T23:07Z"
    }
  }
}

CERTA-2006-AVI-517

Vulnerability from certfr_avis - Published: 2006-11-29 - Updated: 2006-11-29

De multiples vulnérabilités ont été identifiées dans le système d'exploitation Apple Mac OS X. Certaines pourraient, si elles sont exploitées par une personne malveillante, provoquer l'exécution de code arbitraire à distance.

Description

De multiples vulnérabilités ont été identifiées dans le système d'exploitation Apple Mac OS X. Parmi celles-ci :

une vulnérabilité des pilotes de cartes sans-fil Airport : ils n'interpreteraient pas correctement des paquets répondant à une requête de sondage (de type Probe). Une personne malveillante pourrait donc émettre un paquet malformé, en réponse à une requête, afin de provoquer l'exécution de commandes arbitraires à distance. Les solutions de sécurité comme WPA, VPN, 802.11i ne protègent pas de cette catégorie d'attaques visant directement le pilote de la carte réseau. Le CERTA mentionne ce problème dans le bulletin d'actualité CERTA-2006-ACT-046 ;
une vulnérabilité de CFNetwork : les URI (pour Uniform Resource Identifier) FTP ne sont pas validées correctement. Une personne pourrait, en visitant un site FTP construit de manière malveillante, lancer à son insu des commandes FTP contre un site tiers ;
plusieurs vulnérabilités dans clamAV pour Mac OS X Server ;
des vulnérabilités dans OpenSSL pour MacOS. Celles-ci ont été abordées dans des avis du CERTA, notamment CERTA-2006-AVI-421 et CERTA-2006-AVI-448 ;
des vulnérabilités de PHP : certaines ont été décrites dans l'avis du CERTA CERTA-2006-AVI-481 ;
une vulnérabilité de PPP : une personne malveillante pourrait, sur le même réseau qu'une machine vulnérable, envoyer un paquet spécialement conçu, afin de perturber PPPoE. Cela permettrait sous certaines conditions d'exécuter des commandes arbitraires à distance. PPPoE n'est cependant pas activé par défaut.

Solution

Se référer au bulletin de sécurité de l'éditeur Apple pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Apple	N/A	Apple Mac OS X Server v10.3.9 ;
Apple	N/A	Apple Mac OS X v10.4.8 ;
Apple	N/A	Apple Mac OS X Server v10.4.8.
Apple	N/A	Apple Mac OS X v10.3.9 ;

References

Title

Publication Time

GHSA-F7J9-WHHG-C5H7

Vulnerability from github – Published: 2022-05-01 07:16 – Updated: 2022-05-01 07:16

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-4182"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2006-10-16T23:07:00Z",
    "severity": "HIGH"
  },
  "details": "Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected.",
  "id": "GHSA-f7j9-whhg-c5h7",
  "modified": "2022-05-01T07:16:11Z",
  "published": "2022-05-01T07:16:11Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-4182"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29607"
    },
    {
      "type": "WEB",
      "url": "http://docs.info.apple.com/article.html?artnum=304829"
    },
    {
      "type": "WEB",
      "url": "http://kolab.org/security/kolab-vendor-notice-13.txt"
    },
    {
      "type": "WEB",
      "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422"
    },
    {
      "type": "WEB",
      "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22370"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22421"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22488"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22498"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22537"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22551"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22626"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23155"
    },
    {
      "type": "WEB",
      "url": "http://security.gentoo.org/glsa/glsa-200610-10.xml"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1017068"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2006/dsa-1196"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/180864"
    },
    {
      "type": "WEB",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:184"
    },
    {
      "type": "WEB",
      "url": "http://www.novell.com/linux/security/advisories/2006_60_clamav.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/20535"
    },
    {
      "type": "WEB",
      "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/4034"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/4136"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/4264"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/4750"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

FKIE_CVE-2006-4182

Vulnerability from fkie_nvd - Published: 2006-10-16 23:07 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://docs.info.apple.com/article.html?artnum=304829
cve@mitre.org	http://kolab.org/security/kolab-vendor-notice-13.txt
cve@mitre.org	http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422	Patch, Vendor Advisory
cve@mitre.org	http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html
cve@mitre.org	http://secunia.com/advisories/22370
cve@mitre.org	http://secunia.com/advisories/22421
cve@mitre.org	http://secunia.com/advisories/22488
cve@mitre.org	http://secunia.com/advisories/22498
cve@mitre.org	http://secunia.com/advisories/22537
cve@mitre.org	http://secunia.com/advisories/22551
cve@mitre.org	http://secunia.com/advisories/22626
cve@mitre.org	http://secunia.com/advisories/23155
cve@mitre.org	http://security.gentoo.org/glsa/glsa-200610-10.xml
cve@mitre.org	http://securitytracker.com/id?1017068
cve@mitre.org	http://www.debian.org/security/2006/dsa-1196
cve@mitre.org	http://www.kb.cert.org/vuls/id/180864	US Government Resource
cve@mitre.org	http://www.mandriva.com/security/advisories?name=MDKSA-2006:184
cve@mitre.org	http://www.novell.com/linux/security/advisories/2006_60_clamav.html
cve@mitre.org	http://www.securityfocus.com/bid/20535
cve@mitre.org	http://www.us-cert.gov/cas/techalerts/TA06-333A.html	US Government Resource
cve@mitre.org	http://www.vupen.com/english/advisories/2006/4034
cve@mitre.org	http://www.vupen.com/english/advisories/2006/4136
cve@mitre.org	http://www.vupen.com/english/advisories/2006/4264
cve@mitre.org	http://www.vupen.com/english/advisories/2006/4750
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/29607
af854a3a-2127-422b-91ae-364da2661108	http://docs.info.apple.com/article.html?artnum=304829
af854a3a-2127-422b-91ae-364da2661108	http://kolab.org/security/kolab-vendor-notice-13.txt
af854a3a-2127-422b-91ae-364da2661108	http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22370
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22421
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22488
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22498
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22537
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22551
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22626
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23155
af854a3a-2127-422b-91ae-364da2661108	http://security.gentoo.org/glsa/glsa-200610-10.xml
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1017068
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1196
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/180864	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2006:184
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2006_60_clamav.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/20535
af854a3a-2127-422b-91ae-364da2661108	http://www.us-cert.gov/cas/techalerts/TA06-333A.html	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/4034
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/4136
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/4264
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/4750
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/29607

Impacted products

Vendor	Product	Version
clam_anti-virus	clamav	*
clam_anti-virus	clamav	.
clam_anti-virus	clamav	0.15
clam_anti-virus	clamav	0.20
clam_anti-virus	clamav	0.21
clam_anti-virus	clamav	0.22
clam_anti-virus	clamav	0.23
clam_anti-virus	clamav	0.24
clam_anti-virus	clamav	0.51
clam_anti-virus	clamav	0.52
clam_anti-virus	clamav	0.53
clam_anti-virus	clamav	0.54
clam_anti-virus	clamav	0.60
clam_anti-virus	clamav	0.60p
clam_anti-virus	clamav	0.65
clam_anti-virus	clamav	0.67
clam_anti-virus	clamav	0.68
clam_anti-virus	clamav	0.68.1
clam_anti-virus	clamav	0.70
clam_anti-virus	clamav	0.71
clam_anti-virus	clamav	0.72
clam_anti-virus	clamav	0.73
clam_anti-virus	clamav	0.74
clam_anti-virus	clamav	0.75
clam_anti-virus	clamav	0.75.1
clam_anti-virus	clamav	0.80
clam_anti-virus	clamav	0.80_rc1
clam_anti-virus	clamav	0.80_rc2
clam_anti-virus	clamav	0.80_rc3
clam_anti-virus	clamav	0.80_rc4
clam_anti-virus	clamav	0.81
clam_anti-virus	clamav	0.81_rc1
clam_anti-virus	clamav	0.82
clam_anti-virus	clamav	0.83
clam_anti-virus	clamav	0.84
clam_anti-virus	clamav	0.84_rc1
clam_anti-virus	clamav	0.84_rc2
clam_anti-virus	clamav	0.85
clam_anti-virus	clamav	0.85.1
clam_anti-virus	clamav	0.86
clam_anti-virus	clamav	0.86.1
clam_anti-virus	clamav	0.86.2
clam_anti-virus	clamav	0.86_rc1
clam_anti-virus	clamav	0.87
clam_anti-virus	clamav	0.87.1
clam_anti-virus	clamav	0.88
clam_anti-virus	clamav	0.88.1
clam_anti-virus	clamav	0.88.3

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8D7A91DF-84B4-4E45-8675-E107D8BCD070",
              "versionEndIncluding": "0.88.4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:.:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B4BB686-4159-41D9-9AE2-67AF2FCDE0EB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "4C9A0FA4-A4AE-4C90-98DA-8AF5ABB03CE6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "D0E9BC10-5F5B-499A-893C-1EEF6F1180B7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.21:*:*:*:*:*:*:*",
              "matchCriteriaId": "06A9B47A-8FC3-4BD2-A55F-9150307619B8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.22:*:*:*:*:*:*:*",
              "matchCriteriaId": "7068873F-E45D-4471-B55E-BF7B0E3AFEEC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.23:*:*:*:*:*:*:*",
              "matchCriteriaId": "695F0967-1529-42DB-8978-8B9192F7F615",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.24:*:*:*:*:*:*:*",
              "matchCriteriaId": "073BBAA9-7C7B-4D07-8943-7459DD2BAAC3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.51:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB72ED94-7832-43CF-81CF-27F88CAC6E91",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.52:*:*:*:*:*:*:*",
              "matchCriteriaId": "2C48C927-2D02-4B7E-82C3-0BBF29AAB24A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.53:*:*:*:*:*:*:*",
              "matchCriteriaId": "802BFF6B-5D9F-49AE-B96A-86A85E0F1034",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.54:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F7B2943-BC22-4735-8AA5-AADBEA685FAF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.60:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6257524-7FC5-40CA-9BDA-82B8565C5BEC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.60p:*:*:*:*:*:*:*",
              "matchCriteriaId": "35EBA938-DC66-40EA-8C66-38296AB57B57",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.65:*:*:*:*:*:*:*",
              "matchCriteriaId": "395AACCC-C20A-4BC1-BF62-D40FF71B7360",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.67:*:*:*:*:*:*:*",
              "matchCriteriaId": "0F52C121-B8B8-43A8-AFAB-E85474021919",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.68:*:*:*:*:*:*:*",
              "matchCriteriaId": "659B4C39-0F0F-40C5-9B7E-0D00330611F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.68.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7793F3D5-E93C-46C8-ADCA-EF60BF4EC3C4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.70:*:*:*:*:*:*:*",
              "matchCriteriaId": "508C140C-2F87-4270-85B0-00EA6678A344",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.71:*:*:*:*:*:*:*",
              "matchCriteriaId": "3033A4A2-47E9-434F-BA0A-0F2476A67899",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.72:*:*:*:*:*:*:*",
              "matchCriteriaId": "4680089D-DEFB-41E3-AFAF-6DA9252F2DCD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.73:*:*:*:*:*:*:*",
              "matchCriteriaId": "307ED99C-32B8-4C0C-8C55-E2BA6EDB961F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.74:*:*:*:*:*:*:*",
              "matchCriteriaId": "DEF4F0DE-DC05-4F06-BC2D-09BAEAB25184",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.75:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C1EDFB4-B0C8-4832-BCA1-C35D28877581",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.75.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "BF60319C-CFFB-47F4-BDCB-90A5D0FB4240",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.80:*:*:*:*:*:*:*",
              "matchCriteriaId": "4EF47B2A-4520-4872-987D-2EF88344ADB2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.80_rc1:*:*:*:*:*:*:*",
              "matchCriteriaId": "12A4541A-2560-482A-BAEA-275579B499B2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.80_rc2:*:*:*:*:*:*:*",
              "matchCriteriaId": "9006F64F-D72B-49C4-9F51-8AD9273957B5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.80_rc3:*:*:*:*:*:*:*",
              "matchCriteriaId": "A5698AB2-94DE-480D-9E55-C05871562B8C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.80_rc4:*:*:*:*:*:*:*",
              "matchCriteriaId": "A44C0C8F-750B-4237-9E2F-1BEF67F2BCA5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.81:*:*:*:*:*:*:*",
              "matchCriteriaId": "FC31E071-6BB8-45FE-AA09-E7E459B549D2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.81_rc1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C4CBE9C9-A1DE-4C68-B84D-C735A9A700E3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.82:*:*:*:*:*:*:*",
              "matchCriteriaId": "53D884A1-305C-416A-9851-3A7D875FDC47",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.83:*:*:*:*:*:*:*",
              "matchCriteriaId": "E58A6CBC-ED1C-430D-8F43-88694971A850",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.84:*:*:*:*:*:*:*",
              "matchCriteriaId": "E330A535-A376-4BFF-BB1B-31E83370FC02",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.84_rc1:*:*:*:*:*:*:*",
              "matchCriteriaId": "3E389E1C-46A6-4B5C-9091-8AAE5FFDC4B8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.84_rc2:*:*:*:*:*:*:*",
              "matchCriteriaId": "F1ADBDEE-1421-42E5-8DE2-404087613B75",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.85:*:*:*:*:*:*:*",
              "matchCriteriaId": "EDF94B1E-E8D4-4952-9081-1254F335445D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.85.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8657268E-4C78-4565-9966-7329095A7905",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.86:*:*:*:*:*:*:*",
              "matchCriteriaId": "8D20F0D5-2291-4F24-94DB-180CDF926B93",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.86.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A0E2884A-615F-4063-8FB7-EC157C3EC07F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.86.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7BC41B7-272F-44BB-BD48-6C9231402526",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.86_rc1:*:*:*:*:*:*:*",
              "matchCriteriaId": "0138546B-3704-45FB-8115-05C12F9935D7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.87:*:*:*:*:*:*:*",
              "matchCriteriaId": "D23F1D35-6073-49B0-8DD4-C58AEE2CC83C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.87.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D87DA1D8-59AC-4372-BBFC-ED8BC6603AAC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.88:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F56722F-F61A-404B-B0B2-1C92C22D0436",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.88.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "D00EBC44-B4AB-443F-A063-8C8CB64F5F94",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.88.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "2DB68680-FA6D-4235-90DA-E3DF0E5BB666",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Integer overflow in ClamAV 0.88.1 and 0.88.4, and other versions before 0.88.5, allows remote attackers to cause a denial of service (scanning service crash) and execute arbitrary code via a crafted Portable Executable (PE) file that leads to a heap-based buffer overflow when less memory is allocated than expected."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de entero en ClamAV 0.88.1 y 0.88.4, y otras versiones anteriores a 0.88.5, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda del servicio de escaneo) y ejecutar c\u00f3digo de su elecci\u00f3n mediante un Ejecutable Port\u00e1til (Portable Executable, PE) creado artesanalmente, que provoca un desbordamiento de b\u00fafer basado en mont\u00f3n cuando se ha reservado menos memoria de la esperada."
    }
  ],
  "evaluatorSolution": "This vulnerability is addressed in the following product release:\r\nClam Anti-Virus, ClamAV, 0.88.5",
  "id": "CVE-2006-4182",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-10-16T23:07:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://docs.info.apple.com/article.html?artnum=304829"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://kolab.org/security/kolab-vendor-notice-13.txt"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/22370"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/22421"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/22488"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/22498"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/22537"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/22551"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/22626"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23155"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://security.gentoo.org/glsa/glsa-200610-10.xml"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1017068"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2006/dsa-1196"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/180864"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:184"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.novell.com/linux/security/advisories/2006_60_clamav.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/20535"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/4034"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/4136"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/4264"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/4750"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29607"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://docs.info.apple.com/article.html?artnum=304829"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://kolab.org/security/kolab-vendor-notice-13.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/22370"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/22421"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/22488"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/22498"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/22537"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/22551"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/22626"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23155"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200610-10.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1017068"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2006/dsa-1196"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/180864"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:184"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.novell.com/linux/security/advisories/2006_60_clamav.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/20535"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA06-333A.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/4034"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/4136"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/4264"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/4750"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29607"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2006-4182 (GCVE-0-2006-4182)

GSD-2006-4182

CERTA-2006-AVI-517

Description

Solution

GHSA-F7J9-WHHG-C5H7

FKIE_CVE-2006-4182

Tags

Sightings

Nomenclature