CVE-2006-1614

Integer overflow in the cli_scanpe function in the PE header parser (libclamav/pe.c) in Clam AntiVirus (ClamAV) before 0.88.1, when ArchiveMaxFileSize is disabled, allows remote attackers to cause a denial of service and possibly execute arbitrary code.

Published: Apr 7, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-1614
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
clam_anti-virus / clamav	0.84	0.84.x
clam_anti-virus / clamav	0.80	0.80.x
clam_anti-virus / clamav	0.84_rc1	0.84_rc1.x
clam_anti-virus / clamav	0.80_rc3	0.80_rc3.x
clam_anti-virus / clamav	0.80_rc4	0.80_rc4.x
clam_anti-virus / clamav	0.65	0.65.x
clam_anti-virus / clamav	0.68	0.68.x
clam_anti-virus / clamav	0.86.1	0.86.1.x
clam_anti-virus / clamav	0.82	0.82.x
clam_anti-virus / clamav	0.85.1	0.85.1.x
clam_anti-virus / clamav	0.87	0.87.x
clam_anti-virus / clamav	0.85	0.85.x
clam_anti-virus / clamav	0.80_rc1	0.80_rc1.x
clam_anti-virus / clamav	0.75.1	0.75.1.x
clam_anti-virus / clamav	0.86.2	0.86.2.x
clam_anti-virus / clamav	0.67	0.67.x
clam_anti-virus / clamav	0.81	0.81.x
clam_anti-virus / clamav	0.54	0.54.x
clam_anti-virus / clamav	0.53	0.53.x
clam_anti-virus / clamav	0.70	0.70.x
clam_anti-virus / clamav	0.80_rc2	0.80_rc2.x
clam_anti-virus / clamav	0.60	0.60.x
clam_anti-virus / clamav	0.86	0.86.x
clam_anti-virus / clamav	0.83	0.83.x
clam_anti-virus / clamav	0.68.1	0.68.1.x
clam_anti-virus / clamav	0.88	0.88.x
clam_anti-virus / clamav	0.87.1	0.87.1.x
clam_anti-virus / clamav	0.84_rc2	0.84_rc2.x
clam_anti-virus / clamav	0.51	0.51.x
clam_anti-virus / clamav	0.52	0.52.x

Vulnerability Database

289,697

CVE-2006-1614