CVE-2009-1371

CVSS 5.0 - MEDIUM
Description

The CLI_ISCONTAINED macro in libclamav/others.h in ClamAV before 0.95.1 allows remote attackers to cause a denial of service (application crash) via a malformed file with UPack encoding.

Affected Products
50 of 99
Vendor Product Version
clamav clamav All versions
clamav clamav 0.01
clamav clamav 0.02
clamav clamav 0.3
clamav clamav 0.03
clamav clamav 0.05
clamav clamav 0.8_
clamav clamav 0.9_rc1
clamav clamav 0.10
clamav clamav 0.12
clamav clamav 0.13
clamav clamav 0.14
clamav clamav 0.15
clamav clamav 0.20
clamav clamav 0.21
clamav clamav 0.22
clamav clamav 0.23
clamav clamav 0.24
clamav clamav 0.51
clamav clamav 0.52
clamav clamav 0.53
clamav clamav 0.54
clamav clamav 0.60
clamav clamav 0.60p
clamav clamav 0.65
clamav clamav 0.66
clamav clamav 0.67
clamav clamav 0.67-1
clamav clamav 0.68
clamav clamav 0.68.1
clamav clamav 0.70
clamav clamav 0.70
clamav clamav 0.71
clamav clamav 0.72
clamav clamav 0.73
clamav clamav 0.74
clamav clamav 0.75
clamav clamav 0.75.1
clamav clamav 0.80
clamav clamav 0.80
clamav clamav 0.80_rc
clamav clamav 0.80_rc1
clamav clamav 0.80_rc2
clamav clamav 0.80_rc3
clamav clamav 0.81
clamav clamav 0.81_rc1
clamav clamav 0.82
clamav clamav 0.83
clamav clamav 0.84
clamav clamav 0.84_rc1
Showing first 50 of 99 affected products.
References
http://lists.apple.com/archives/security-announce/...
http://osvdb.org/53602
http://secunia.com/advisories/34612
http://secunia.com/advisories/34654
http://secunia.com/advisories/34716
http://secunia.com/advisories/36701
http://support.apple.com/kb/HT3865
http://svn.clamav.net/websvn/filedetails.php?repna...
http://www.debian.org/security/2009/dsa-1771
http://www.mandriva.com/security/advisories?name=M...
http://www.securityfocus.com/bid/34446
http://www.securitytracker.com/id?1022028
http://www.ubuntu.com/usn/usn-756-1
http://www.vupen.com/english/advisories/2009/0985
https://launchpad.net/bugs/360502
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1...
http://lists.apple.com/archives/security-announce/...
http://osvdb.org/53602
http://secunia.com/advisories/34612
http://secunia.com/advisories/34654
Weakness Types
CWE-20
CVE Information
CVE ID:
CVE-2009-1371
Published:
2009-04-23
Modified:
2026-04-23
CVSS Score:
5.0
Severity:
MEDIUM
Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected Vendors
clamav
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL