CVE-2011-1003

CVSS 6.8 - MEDIUM
Description

Double free vulnerability in the vba_read_project_strings function in vba_extract.c in libclamav in ClamAV before 0.97 might allow remote attackers to execute arbitrary code via crafted Visual Basic for Applications (VBA) data in a Microsoft Office document. NOTE: some of these details are obtained from third party information.

Affected Products
50 of 114
Vendor Product Version
clamav clamav All versions
clamav clamav 0.01
clamav clamav 0.02
clamav clamav 0.3
clamav clamav 0.03
clamav clamav 0.05
clamav clamav 0.8
clamav clamav 0.9
clamav clamav 0.10
clamav clamav 0.12
clamav clamav 0.13
clamav clamav 0.14
clamav clamav 0.14
clamav clamav 0.15
clamav clamav 0.20
clamav clamav 0.21
clamav clamav 0.22
clamav clamav 0.23
clamav clamav 0.24
clamav clamav 0.51
clamav clamav 0.52
clamav clamav 0.53
clamav clamav 0.54
clamav clamav 0.60
clamav clamav 0.60p
clamav clamav 0.65
clamav clamav 0.66
clamav clamav 0.67
clamav clamav 0.67-1
clamav clamav 0.68
clamav clamav 0.68.1
clamav clamav 0.70
clamav clamav 0.70
clamav clamav 0.71
clamav clamav 0.72
clamav clamav 0.73
clamav clamav 0.74
clamav clamav 0.75
clamav clamav 0.75.1
clamav clamav 0.80
clamav clamav 0.80
clamav clamav 0.80
clamav clamav 0.80
clamav clamav 0.80
clamav clamav 0.80
clamav clamav 0.80_rc
clamav clamav 0.81
clamav clamav 0.81
clamav clamav 0.82
clamav clamav 0.83
Showing first 50 of 114 affected products.
References
http://git.clamav.net/gitweb?p=clamav-devel.git%3B...
http://git.clamav.net/gitweb?p=clamav-devel.git%3B...
http://lists.fedoraproject.org/pipermail/package-a...
http://lists.fedoraproject.org/pipermail/package-a...
http://lists.opensuse.org/opensuse-security-announ...
http://openwall.com/lists/oss-security/2011/02/21/...
http://openwall.com/lists/oss-security/2011/02/21/...
http://osvdb.org/70937
http://secunia.com/advisories/43392
http://secunia.com/advisories/43498
http://secunia.com/advisories/43752
http://securitytracker.com/id?1025100
http://www.mandriva.com/en/support/security/adviso...
http://www.securityfocus.com/bid/46470
http://www.ubuntu.com/usn/USN-1076-1
http://www.vupen.com/english/advisories/2011/0453
http://www.vupen.com/english/advisories/2011/0458
http://www.vupen.com/english/advisories/2011/0523
https://exchange.xforce.ibmcloud.com/vulnerabiliti...
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2...
Weakness Types
CWE-399
CVE Information
CVE ID:
CVE-2011-1003
Published:
2011-02-23
Modified:
2026-04-29
CVSS Score:
6.8
Severity:
MEDIUM
Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P
Affected Vendors
clamav
Quick Actions
View on NVD Find Similar CVEs
CVSS Severity Scale
0.0 - 3.9 LOW
4.0 - 6.9 MEDIUM
7.0 - 8.9 HIGH
9.0 - 10.0 CRITICAL