Off-by-one error in the parseicon function in libclamav/pe_icons.c in ClamAV 0.96 allows remote attackers to cause a denial of service (crash) via a crafted PE icon that triggers an out-of-bounds read, related to improper rounding during scaling.
References
Configurations
History
13 Feb 2023, 04:19
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | Off-by-one error in the parseicon function in libclamav/pe_icons.c in ClamAV 0.96 allows remote attackers to cause a denial of service (crash) via a crafted PE icon that triggers an out-of-bounds read, related to improper rounding during scaling. |
02 Feb 2023, 17:17
Type | Values Removed | Values Added |
---|---|---|
Summary | CVE-2010-1640 Clam AntiVirus: Off-by-one error (DoS, crash) by parsing a specially-crafted PE icon file | |
References |
|
|
Information
Published : 2010-05-26 18:30
Updated : 2023-12-10 11:03
NVD link : CVE-2010-1640
Mitre link : CVE-2010-1640
CVE.ORG link : CVE-2010-1640
JSON object : View
Products Affected
clamav
- clamav
CWE
CWE-189
Numeric Errors