All about open source: articles, tutorials, licensing information and more.

By Security Team on Monday, December 31st, 2007 in Security Notifications | Related Software Packages: clamav

Affects:

• Clamav 0.92 [Low]

Description

ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.

If you have questions about this security warning or need to have it translated and you have an active technical support contract, please call 1-888-OPENLOGIC or email us at support@openlogic.com.

CVE Identifier: CVE-2007-6595
Severity: Low

NIST National Vulnerabilities Database

Share this post:

Security Team

We'll keep you safe. Trust us, that's our job. Even though, contrary to what our Avatar might imply, we're not all linebackers. In fact, some of us are quite petite. And others of us wear high heeled boots. Red. Wondering whether we also know what we're talking about? C'mon -have you read any of these security posts?

Comments are closed.

• Software Packages

  Click a package to show related articles:

  Apache Ruby Rails Glassfish Ubuntu Tomcat Firefox JBoss MySQL Java Maven PostgreSQL RHEL NetBeans Ruby on Rails OpenOffice CentOS Python openSUSE Mandriva FreeBSD OpenSSL Jetty Dia Postfix

• Keywords

  Tutorial Comparison Legal License GPL Linux Tips & Tricks FAQ Java Microsoft Repository Community Web Server Open Source Policy Copyright Sun SSH Governance IP Scanning Mozilla e-mail Adoption OS Exchange

• Open Source Help & Resources

  Get a demo of OpenLogic Exchange (OLEX) »Get help selecting the right open source software »Register for a source code scanning demo »

• Most Recent

  • Choosing the Right Java Web Development Framework
  • Comparison of Community Linux Distributions for the Enterprise
  • Creating Intelligent Projects with Maven
  • Securing SSL/TLS with Secure Renegotiation
  • Getting Started with Java EE 6

• Most Comments

  • How to Fix Memory Leaks in Java (22)
  • Getting Started with Java EE 6 (20)
  • Comparing Open Source Agile Project Management Tools (16)
  • How to Customize the Firefox 3 Installer (11)
  • Comparison of Community Linux Distributions for the Enterprise (10)

• Open Source News

  • The State of Open Source: Startup, Growth, Maturity or Decline? (Stephen O'Grady)July 27th, 2010
  • 50 Open Source Alternatives to Financial Applications (Datamation)July 20th, 2010
  • RackSpace Open Sources Its OpenStackSam Cloud Platform (GigaOM)July 18th, 2010
  • Does Open Core Contradict the Values of Open Source? (451 CAOS Theory)July 15th, 2010
  • Latest Version of SugarCRM Stirs Controversy (ZDNet)July 14th, 2010
  • Is Open Source More Feature-Rich Than Proprietary Software? (OStatic)July 9th, 2010
  • 10 Apps That Make Linux Fun To Use (Datamation)July 6th, 2010
  • Apache Tomcat Version 7.0 Announced (The Apache Software Foundation)June 29th, 2010
  • Debian vs. Ubuntu: Contrasting Philosophies (Datamation)June 28th, 2010
  • Could the CodePlex Foundation Go Independent? (OStatic)June 23rd, 2010