CVE-2008-3914

CVSS V2 High 10 CVSS V3 None
Description
Multiple unspecified vulnerabilities in ClamAV before 0.94 have unknown impact and attack vectors related to file descriptor leaks on the "error path" in (1) libclamav/others.c and (2) libclamav/sis.c.
Overview
  • CVE ID
  • CVE-2008-3914
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2008-09-11T01:13:41
  • Last Modified Date
  • 2020-11-05T16:05:37
Weakness Enumerations
CWE URL
CWE-200 http://cwe.mitre.org/data/definitions/200.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:clamav:clamav:*:*:*:*:*:*:*:* 1 OR 0.93.3
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:L/Au:N/C:C/I:C/A:C
  • Access Vector
  • NETWORK
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • COMPLETE
  • Integrity Impact
  • COMPLETE
  • Availability Impact
  • COMPLETE
  • Base Score
  • 10
  • Severity
  • HIGH
  • Exploitability Score
  • 10
  • Impact Score
  • 10
References
Reference URL Reference Tags
http://www.openwall.com/lists/oss-security/2008/09/03/2 Mailing List Third Party Advisory
https://wwws.clamav.net/bugzilla/show_bug.cgi?id=1141 Issue Tracking
http://svn.clamav.net/svn/clamav-devel/trunk/ChangeLog Vendor Advisory
http://sourceforge.net/project/shownotes.php?group_id=86638&release_id=623661 Patch Third Party Advisory
http://www.openwall.com/lists/oss-security/2008/09/04/13 Mailing List
http://www.securityfocus.com/bid/31051 Patch Third Party Advisory VDB Entry
http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html Mailing List Third Party Advisory
http://secunia.com/advisories/31906 Third Party Advisory
http://security.gentoo.org/glsa/glsa-200809-18.xml Third Party Advisory
http://kolab.org/security/kolab-vendor-notice-22.txt Third Party Advisory
http://secunia.com/advisories/32030 Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2008:189 Third Party Advisory
http://www.securitytracker.com/id?1020828 Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/31681 Third Party Advisory VDB Entry
http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html Mailing List Third Party Advisory
http://secunia.com/advisories/32222 Third Party Advisory
http://support.apple.com/kb/HT3216 Third Party Advisory
http://www.debian.org/security/2008/dsa-1660 Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00348.html Third Party Advisory
http://secunia.com/advisories/32699 Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00332.html Third Party Advisory
http://secunia.com/advisories/31982 Third Party Advisory
http://secunia.com/advisories/32424 Third Party Advisory
http://www.vupen.com/english/advisories/2008/2564 Permissions Required
http://www.vupen.com/english/advisories/2008/2780 Permissions Required
https://exchange.xforce.ibmcloud.com/vulnerabilities/45058 Third Party Advisory VDB Entry
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2008-3914
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3914
History
Created Old Value New Value Data Type Notes
2022-05-10 16:20:58 Added to TrackCVE