CVE-2006-2427

freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of the target file.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://securitytracker.com/id?1016086	Exploit
http://secunia.com/advisories/20085	Vendor Advisory
http://securityreason.com/securityalert/912
http://www.vupen.com/english/advisories/2006/1807
https://exchange.xforce.ibmcloud.com/vulnerabilities/26453
http://www.digitalmunition.com/DMA[2006-0514a].txt	Broken Link
http://www.securityfocus.com/archive/1/434008/100/0/threaded

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:clam_anti-virus:clamav:0.88:::::::*
	cpe:2.3:a:clam_anti-virus:clamxav:1.0.3h:::::::*

Information

Published : 2006-05-17 03:06

Updated : 2018-10-18 09:39

NVD link : CVE-2006-2427

Mitre link : CVE-2006-2427

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

clam_anti-virus

clamxav
clamav

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://securitytracker.com/id?1016086", "name": "1016086", "tags": ["Exploit"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/20085", "name": "20085", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://securityreason.com/securityalert/912", "name": "912", "tags": [], "refsource": "SREASON"}, {"url": "http://www.vupen.com/english/advisories/2006/1807", "name": "ADV-2006-1807", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26453", "name": "clamxav-freshclam-insecure-privileges(26453)", "tags": [], "refsource": "XF"}, {"url": "http://www.digitalmunition.com/DMA[2006-0514a].txt", "name": "http://www.digitalmunition.com/DMA[2006-0514a].txt", "tags": ["Broken Link"], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/archive/1/434008/100/0/threaded", "name": "20060515 DMA[2006-0514a] - 'ClamAV freshclam incorrect privilege drop'", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "freshclam in (1) Clam Antivirus (ClamAV) 0.88 and (2) ClamXav 1.0.3h and earlier does not drop privileges before processing the config-file command line option, which allows local users to read portions of arbitrary files when an error message displays the first line of the target file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-2427", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2006-05-17T10:06Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamav:0.88:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:clam_anti-virus:clamxav:1.0.3h:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-18T16:39Z"}