CVE-2013-2020

NONECVSS 0.0

0.0

Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in a UPX packed executable, which triggers an out-of-bounds read.

🔗 References (42)

secalert@redhathttp://blog.clamav.net/2013/04/clamav-0978-has-been-released.html
secalert@redhathttp://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html
secalert@redhathttp://lists.apple.com/archives/security-announce/2013/Sep/msg00004.html
secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2013-June/109514.html
secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2013-June/109639.html
secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2013-June/109652.html
secalert@redhathttp://lists.fedoraproject.org/pipermail/package-announce/2013-May/105575.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2014-12/msg00006.html
secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-06/msg00018.html
secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-06/msg00020.html
secalert@redhathttp://secunia.com/advisories/53150
secalert@redhathttp://secunia.com/advisories/53182
secalert@redhathttp://support.apple.com/kb/HT5880
secalert@redhathttp://support.apple.com/kb/HT5892
secalert@redhathttp://www.mandriva.com/security/advisories?name=MDVSA-2013:159

Is Your Infrastructure Affected by CVE-2013-2020?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2013-2020

📅 Published

🔄 Last Modified

🔗 References (42)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2013-2020?