CVE-2005-3500
CVSS 5.0 - MEDIUM
Description
The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via a crafted value in a CAB file that causes ClamAV to repeatedly scan the same block.
Affected Products
33| Vendor | Product | Version |
|---|---|---|
| clam_anti-virus | clamav |
0.15
|
| clam_anti-virus | clamav |
0.20
|
| clam_anti-virus | clamav |
0.21
|
| clam_anti-virus | clamav |
0.22
|
| clam_anti-virus | clamav |
0.23
|
| clam_anti-virus | clamav |
0.24
|
| clam_anti-virus | clamav |
0.51
|
| clam_anti-virus | clamav |
0.52
|
| clam_anti-virus | clamav |
0.53
|
| clam_anti-virus | clamav |
0.54
|
| clam_anti-virus | clamav |
0.60
|
| clam_anti-virus | clamav |
0.65
|
| clam_anti-virus | clamav |
0.67
|
| clam_anti-virus | clamav |
0.68
|
| clam_anti-virus | clamav |
0.68.1
|
| clam_anti-virus | clamav |
0.70
|
| clam_anti-virus | clamav |
0.71
|
| clam_anti-virus | clamav |
0.72
|
| clam_anti-virus | clamav |
0.73
|
| clam_anti-virus | clamav |
0.74
|
| clam_anti-virus | clamav |
0.75
|
| clam_anti-virus | clamav |
0.75.1
|
| clam_anti-virus | clamav |
0.80
|
| clam_anti-virus | clamav |
0.81
|
| clam_anti-virus | clamav |
0.82
|
| clam_anti-virus | clamav |
0.83
|
| clam_anti-virus | clamav |
0.84
|
| clam_anti-virus | clamav |
0.85
|
| clam_anti-virus | clamav |
0.85.1
|
| clam_anti-virus | clamav |
0.86
|
| clam_anti-virus | clamav |
0.86.1
|
| clam_anti-virus | clamav |
0.86.2
|
| clam_anti-virus | clamav |
0.87
|
References
Weakness Types
NVD-CWE-Other
CVE Information
- CVE ID:
CVE-2005-3500- Published:
- 2005-11-05
- Modified:
- 2026-04-16
- CVSS Score:
- 5.0
- Severity:
- MEDIUM
- Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected Vendors
clam_anti-virus
Quick Actions
CVSS Severity Scale
0.0 - 3.9
LOW
4.0 - 6.9
MEDIUM
7.0 - 8.9
HIGH
9.0 - 10.0
CRITICAL