CVE-2003-0946

Format string vulnerability in clamav-milter for Clam AntiVirus 0.60 through 0.60p, and other versions before 0.65, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in the email address argument of a "MAIL FROM" command.

Published: Dec 15, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-0946
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
clam_anti-virus / clamav	0.60p	0.60p.x
clam_anti-virus / clamav	0.60	0.60.x

http://marc.info/?l=bugtraq&m=106867135830683&w=2
http://sourceforge.net/project/shownotes.php?release_id=197038

Vulnerability Database

289,697

CVE-2003-0946