Home > Vulnerability Database > CVE-2005-2450

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2005-2450

Date: August 2, 2005

Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and earlier allow remote attackers to gain privileges via a crafted e-mail message.

Severity Score

7.3

Related Resources (18)

Url: http://www.osvdb.org/18259

Url: http://www.osvdb.org/18258

Url: http://www.novell.com/linux/security/advisories/2005_18_sr.html

Url: http://secunia.com/advisories/16229

Url: http://www.osvdb.org/18257

Url: http://secunia.com/advisories/16458

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/21555

Url: http://secunia.com/advisories/16250

Url: http://sourceforge.net/project/shownotes.php?release_id=344514

Url: http://www.securityfocus.com/bid/14359

Url: http://secunia.com/advisories/16296

Url: http://security.gentoo.org/glsa/glsa-200507-25.xml

Url: http://secunia.com/advisories/16180

Url: http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000987

Url: http://marc.info/?l=bugtraq&m=112230864412932&w=2

Url: https://nvd.nist.gov/vuln/detail/CVE-2005-2450

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2005-2450

Url: https://www.mend.io/vulnerability-database/CVE-2005-2450

Severity Score

7.3

CVSS v3.1

Base Score:	7.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Do you need more information?

Contact Us