What is the severity of CVE-2005-3501?

CVE-2005-3501 has a medium severity rating due to its potential to cause a denial of service through an infinite loop when processing a crafted CAB file.

How do I fix CVE-2005-3501?

To fix CVE-2005-3501, upgrade ClamAV to version 0.87.1 or later, where the vulnerability has been addressed.

What versions of ClamAV are affected by CVE-2005-3501?

CVE-2005-3501 affects ClamAV versions up to 0.87, including various releases from 0.01 up to 0.86.1.

Can CVE-2005-3501 be exploited remotely?

Yes, CVE-2005-3501 can be exploited by remote attackers through specially crafted CAB files.

What type of vulnerability is CVE-2005-3501?

CVE-2005-3501 is classified as a denial of service (DoS) vulnerability.

Vulnerability/
CVE-2005-3501

medium

4.3

CWE

399

5/11/2005

7/8/2024

CVE-2005-3501

First published: Sat Nov 05 2005(Updated: )

The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB file that causes cabd_find to be called with a zero length.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Clamav Clamav	=0.86.2
Clamav Clamav	=0.02
Clamav Clamav	=0.8-rc3
Clamav Clamav	=0.15
Clamav Clamav	=0.75.1
Clamav Clamav	=0.65
Clamav Clamav	=0.81
Clamav Clamav	=0.86
Clamav Clamav	=0.01
Clamav Clamav	=0.85
Clamav Clamav	=0.84
Clamav Clamav	=0.3
Clamav Clamav	=0.70-rc
Clamav Clamav	=0.86-rc1
Clamav Clamav	=0.68.1
Clamav Clamav	=0.03
Clamav Clamav	=0.74
Clamav Clamav	<=0.87
Clamav Clamav	=0.86.1
Clamav Clamav	=0.71
Clamav Clamav	=0.60p
Clamav Clamav	=0.80-rc
Clamav Clamav	=0.85.1
Clamav Clamav	=0.13
Clamav Clamav	=0.81-rc1
Clamav Clamav	=0.10
Clamav Clamav	=0.80-rc3
Clamav Clamav	=0.12
Clamav Clamav	=0.23
Clamav Clamav	=0.84-rc1
Clamav Clamav	=0.80-rc2
Clamav Clamav	=0.80-rc1
Clamav Clamav	=0.60
Clamav Clamav	=0.83
Clamav Clamav	=0.20
Clamav Clamav	=0.80-rc4
Clamav Clamav	=0.70
Clamav Clamav	=0.14
Clamav Clamav	=0.24
Clamav Clamav	=0.66
Clamav Clamav	=0.51
Clamav Clamav	=0.52
Clamav Clamav	=0.22
Clamav Clamav	=0.72
Clamav Clamav	=0.75
Clamav Clamav	=0.05
Clamav Clamav	=0.54
Clamav Clamav	=0.80
Clamav Clamav	=0.21
Clamav Clamav	=0.84-rc2
Clamav Clamav	=0.67-1
Clamav Clamav	=0.14-pre
Clamav Clamav	=0.67
Clamav Clamav	=0.68
Clamav Clamav	=0.53
Clamav Clamav	=0.80_rc
Clamav Clamav	=0.82
Clamav Clamav	=0.73

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-3501?
CVE-2005-3501 has a medium severity rating due to its potential to cause a denial of service through an infinite loop when processing a crafted CAB file.
How do I fix CVE-2005-3501?
To fix CVE-2005-3501, upgrade ClamAV to version 0.87.1 or later, where the vulnerability has been addressed.
What versions of ClamAV are affected by CVE-2005-3501?
CVE-2005-3501 affects ClamAV versions up to 0.87, including various releases from 0.01 up to 0.86.1.
Can CVE-2005-3501 be exploited remotely?
Yes, CVE-2005-3501 can be exploited by remote attackers through specially crafted CAB files.
What type of vulnerability is CVE-2005-3501?
CVE-2005-3501 is classified as a denial of service (DoS) vulnerability.

collector/nvd-historical
collector/nvd-index
agent/softwarecombine
agent/type
collector/mitre-cve
source/MITRE
agent/remedy
agent/last-modified-date
agent/weakness
agent/severity
agent/references
agent/author
agent/tags
agent/description
agent/first-publish-date
agent/event
agent/source
vendor/clamav
canonical/clamav clamav
version/clamav clamav/0.86.2
version/clamav clamav/0.02
version/clamav clamav/0.8-rc3
version/clamav clamav/0.15
version/clamav clamav/0.75.1
version/clamav clamav/0.65
version/clamav clamav/0.81
version/clamav clamav/0.86
version/clamav clamav/0.01
version/clamav clamav/0.85
version/clamav clamav/0.84
version/clamav clamav/0.3
version/clamav clamav/0.70-rc
version/clamav clamav/0.86-rc1
version/clamav clamav/0.68.1
version/clamav clamav/0.03
version/clamav clamav/0.74
version/clamav clamav/0.87
version/clamav clamav/0.86.1
version/clamav clamav/0.71
version/clamav clamav/0.60p
version/clamav clamav/0.80-rc
version/clamav clamav/0.85.1
version/clamav clamav/0.13
version/clamav clamav/0.81-rc1
version/clamav clamav/0.10
version/clamav clamav/0.80-rc3
version/clamav clamav/0.12
version/clamav clamav/0.23
version/clamav clamav/0.84-rc1
version/clamav clamav/0.80-rc2
version/clamav clamav/0.80-rc1
version/clamav clamav/0.60
version/clamav clamav/0.83
version/clamav clamav/0.20
version/clamav clamav/0.80-rc4
version/clamav clamav/0.70
version/clamav clamav/0.14
version/clamav clamav/0.24
version/clamav clamav/0.66
version/clamav clamav/0.51
version/clamav clamav/0.52
version/clamav clamav/0.22
version/clamav clamav/0.72
version/clamav clamav/0.75
version/clamav clamav/0.05
version/clamav clamav/0.54
version/clamav clamav/0.80
version/clamav clamav/0.21
version/clamav clamav/0.84-rc2
version/clamav clamav/0.67-1
version/clamav clamav/0.14-pre
version/clamav clamav/0.67
version/clamav clamav/0.68
version/clamav clamav/0.53
version/clamav clamav/0.80_rc
version/clamav clamav/0.82
version/clamav clamav/0.73

CVE-2005-3501

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-3501?

How do I fix CVE-2005-3501?

What versions of ClamAV are affected by CVE-2005-3501?

Can CVE-2005-3501 be exploited remotely?

What type of vulnerability is CVE-2005-3501?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2005-3501?

How do I fix CVE-2005-3501?

What versions of ClamAV are affected by CVE-2005-3501?

Can CVE-2005-3501 be exploited remotely?

What type of vulnerability is CVE-2005-3501?