CVE-2005-2450

{"id": "CVE-2005-2450", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2005-08-03T04:00:00.000", "references": [{"url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000987", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=112230864412932&w=2", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/16180", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/16229", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/16250", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/16296", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/16458", "source": "cve@mitre.org"}, {"url": "http://security.gentoo.org/glsa/glsa-200507-25.xml", "source": "cve@mitre.org"}, {"url": "http://sourceforge.net/project/shownotes.php?release_id=344514", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.novell.com/linux/security/advisories/2005_18_sr.html", "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/18257", "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/18258", "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/18259", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/14359", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/21555", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Multiple integer overflows in the (1) TNEF, (2) CHM, or (3) FSG file format processors in libclamav for Clam AntiVirus (ClamAV) 0.86.1 and earlier allow remote attackers to gain privileges via a crafted e-mail message."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en los procesadores de formato de fichero NEF, CHM y FSG en libclamav for Clam AntiVirus (ClamAV) 0.86.1 y anteriores permite que atacantes remotos ganen privilegios mediante un e-mail ama\u00f1ado."}], "lastModified": "2017-07-11T01:32:51.343", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.85:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDF94B1E-E8D4-4952-9081-1254F335445D"}, {"criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.85.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8657268E-4C78-4565-9966-7329095A7905"}, {"criteria": "cpe:2.3:a:clam_anti-virus:clamav:0.86:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D20F0D5-2291-4F24-94DB-180CDF926B93"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}