virus logo FortiClient Vulnerability

Denial-of-Service Caused by EGG Archive Parsing in ClamAV

description-logoDescription

A vulnerability in the EGG archive parsing module in Clam AntiVirus (ClamAV) Software versions 0.102.0 - 0.102.3 could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to a null pointer dereference. An attacker could exploit this vulnerability by sending a crafted EGG file to an affected device. An exploit could allow the attacker to cause the ClamAV scanning process crash, resulting in a denial of service condition.

affected-products-logoAffected Applications

ClamAV

CVE References

CVE-2020-3481

Other References

https://blog.clamav.net/2020/07/clamav-01024-security-patch-released.html
ID 4043
Created Jan 20, 2022
Description
Updated		 Feb 16, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor ClamAV
Patch manual
Application ClamAV