{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2010-09-20T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. NOTE: some of these details are obtained from third party information."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2010-12-07T10:00:00.000Z", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "[oss-security] 20100928 Re: CVE request: clamav < 0.96.3 pdf bounds checking", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2010/09/28/5"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=blob_plain%3Bf=ChangeLog%3Bhb=clamav-0.96.3"}, {"name": "[oss-security] 20100927 Re: CVE request: clamav < 0.96.3 pdf bounds checking", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2010/09/27/6"}, {"name": "SUSE-SR:2010:020", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2226"}, {"name": "ADV-2010-2455", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2010/2455"}, {"name": "APPLE-SA-2011-03-21-1", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://security-tracker.debian.org/tracker/CVE-2010-3434"}, {"name": "[oss-security] 20100922 CVE request: clamav < 0.96.3 pdf bounds checking", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2010/09/22/1"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commit%3Bh=dc5143b4669ae39c79c9af50d569c28c798f33da"}, {"name": "[oss-security] 20100928 Re: CVE request: clamav < 0.96.3 pdf bounds checking", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2010/09/28/3"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.apple.com/kb/HT4581"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2010-3434", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. NOTE: some of these details are obtained from third party information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20100928 Re: CVE request: clamav < 0.96.3 pdf bounds checking", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2010/09/28/5"}, {"name": "http://git.clamav.net/gitweb?p=clamav-devel.git;a=blob_plain;f=ChangeLog;hb=clamav-0.96.3", "refsource": "CONFIRM", "url": "http://git.clamav.net/gitweb?p=clamav-devel.git;a=blob_plain;f=ChangeLog;hb=clamav-0.96.3"}, {"name": "[oss-security] 20100927 Re: CVE request: clamav < 0.96.3 pdf bounds checking", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2010/09/27/6"}, {"name": "SUSE-SR:2010:020", "refsource": "SUSE", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html"}, {"name": "https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2226", "refsource": "CONFIRM", "url": "https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2226"}, {"name": "ADV-2010-2455", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2010/2455"}, {"name": "APPLE-SA-2011-03-21-1", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html"}, {"name": "http://security-tracker.debian.org/tracker/CVE-2010-3434", "refsource": "CONFIRM", "url": "http://security-tracker.debian.org/tracker/CVE-2010-3434"}, {"name": "[oss-security] 20100922 CVE request: clamav < 0.96.3 pdf bounds checking", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2010/09/22/1"}, {"name": "http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=dc5143b4669ae39c79c9af50d569c28c798f33da", "refsource": "CONFIRM", "url": "http://git.clamav.net/gitweb?p=clamav-devel.git;a=commit;h=dc5143b4669ae39c79c9af50d569c28c798f33da"}, {"name": "[oss-security] 20100928 Re: CVE request: clamav < 0.96.3 pdf bounds checking", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2010/09/28/3"}, {"name": "http://support.apple.com/kb/HT4581", "refsource": "CONFIRM", "url": "http://support.apple.com/kb/HT4581"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T03:11:43.709Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20100928 Re: CVE request: clamav < 0.96.3 pdf bounds checking", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2010/09/28/5"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=blob_plain%3Bf=ChangeLog%3Bhb=clamav-0.96.3"}, {"name": "[oss-security] 20100927 Re: CVE request: clamav < 0.96.3 pdf bounds checking", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2010/09/27/6"}, {"name": "SUSE-SR:2010:020", "tags": ["vendor-advisory", "x_refsource_SUSE", "x_transferred"], "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2226"}, {"name": "ADV-2010-2455", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2010/2455"}, {"name": "APPLE-SA-2011-03-21-1", "tags": ["vendor-advisory", "x_refsource_APPLE", "x_transferred"], "url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://security-tracker.debian.org/tracker/CVE-2010-3434"}, {"name": "[oss-security] 20100922 CVE request: clamav < 0.96.3 pdf bounds checking", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2010/09/22/1"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commit%3Bh=dc5143b4669ae39c79c9af50d569c28c798f33da"}, {"name": "[oss-security] 20100928 Re: CVE request: clamav < 0.96.3 pdf bounds checking", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2010/09/28/3"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.apple.com/kb/HT4581"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2010-3434", "datePublished": "2010-09-30T14:00:00.000Z", "dateReserved": "2010-09-17T00:00:00.000Z", "dateUpdated": "2024-08-07T03:11:43.709Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:clamav:clamav:*:*:*:*:*:*:*:*", "matchCriteriaId": "21D5E836-6D0B-4DCB-ACE2-141CEE296E30", "versionEndIncluding": "0.96.2", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.01:*:*:*:*:*:*:*", "matchCriteriaId": "68EC0AEB-91CF-4A79-AF40-A475E896FB45", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.02:*:*:*:*:*:*:*", "matchCriteriaId": "5935EDE0-9203-4150-9B7A-AB10B377F9F2", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.3:*:*:*:*:*:*:*", "matchCriteriaId": "59C2680C-C187-487A-B6C4-F509E0C52436", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.03:*:*:*:*:*:*:*", "matchCriteriaId": "A796E5E1-6481-49EF-8D97-9EC2A01C712B", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.05:*:*:*:*:*:*:*", "matchCriteriaId": "03FF3AE5-5BD9-43B4-9FB0-6BED8450C9ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.9:rc1:*:*:*:*:*:*", "matchCriteriaId": "4E951B4D-F244-43A4-9593-B8B975D16C39", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.10:*:*:*:*:*:*:*", "matchCriteriaId": "22958219-46D6-4868-B324-BFC2F2C893F7", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.12:*:*:*:*:*:*:*", "matchCriteriaId": "4543DDEE-C1D1-428F-91C7-98B8985A5931", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.13:*:*:*:*:*:*:*", "matchCriteriaId": "1FED760C-7106-49CE-B4FE-CA53A1092C14", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.14:*:*:*:*:*:*:*", "matchCriteriaId": "821EF522-A058-4509-A4CB-E9B800E83EFF", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.15:*:*:*:*:*:*:*", "matchCriteriaId": "F488ACB2-A013-4BF3-B5AC-897E40BA87F8", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.20:*:*:*:*:*:*:*", "matchCriteriaId": "2D5799FA-DD99-4A35-BC56-B2FBEB747226", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.21:*:*:*:*:*:*:*", "matchCriteriaId": "F32EA99F-088E-499E-9DCE-EFA9A64D1673", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.22:*:*:*:*:*:*:*", "matchCriteriaId": "F8B04C5B-316D-4C6A-96CF-F145F7C9E636", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.23:*:*:*:*:*:*:*", "matchCriteriaId": "E66D5CDE-ED5D-41BA-A4B1-28E8559EC056", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.24:*:*:*:*:*:*:*", "matchCriteriaId": "20769174-C51F-47D5-A34F-EB772F542A57", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.51:*:*:*:*:*:*:*", "matchCriteriaId": "721B8B46-DFD9-4937-96A3-8D731304415B", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.52:*:*:*:*:*:*:*", "matchCriteriaId": "CDF18A59-FB30-45C6-B28E-4499DCD78F42", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.53:*:*:*:*:*:*:*", "matchCriteriaId": "0B28E0BE-1E2D-45D2-B483-2D81326BF482", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.54:*:*:*:*:*:*:*", "matchCriteriaId": "E7029650-6DF1-4616-BE9F-DE40E9BBE3A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.60:*:*:*:*:*:*:*", "matchCriteriaId": "F47FD5DF-F22E-4B78-9B92-A9C41950F836", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.60p:*:*:*:*:*:*:*", "matchCriteriaId": "C1F9571F-9192-414F-B680-10A22C71CFDF", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.65:*:*:*:*:*:*:*", "matchCriteriaId": "F7CAC876-9AAC-407C-A34E-98AA6801D25F", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.66:*:*:*:*:*:*:*", "matchCriteriaId": "470FC8FE-785A-4934-8989-D17C1796870E", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.67:*:*:*:*:*:*:*", "matchCriteriaId": "79A6C0FE-2EED-447D-9F62-12CFF1E0918A", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.67-1:*:*:*:*:*:*:*", "matchCriteriaId": "0928E05F-92E7-4451-AC11-4E6A014E1154", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.68:*:*:*:*:*:*:*", "matchCriteriaId": "B2E7A70A-3584-4259-80CA-03AE290ABAE1", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.68.1:*:*:*:*:*:*:*", "matchCriteriaId": "24AF81C1-5B68-4D84-AFB9-C0419B7F98D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.70:*:*:*:*:*:*:*", "matchCriteriaId": "D27D70A0-EC82-4DC7-A66D-60D263B76E37", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.71:*:*:*:*:*:*:*", "matchCriteriaId": "F4AB3389-1C30-47BB-9DAE-0F744E7F8877", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.72:*:*:*:*:*:*:*", "matchCriteriaId": "CD4D3D3E-067B-4A37-A851-99D2A3E20FC1", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.73:*:*:*:*:*:*:*", "matchCriteriaId": "4DA837A0-C8CB-486B-845E-A370E3137697", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.74:*:*:*:*:*:*:*", "matchCriteriaId": "235A144A-4AB1-4756-AFB1-58AFFE02649E", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.75:*:*:*:*:*:*:*", "matchCriteriaId": "767BBE7F-6CC4-42D4-9730-6E617D36AAE6", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.75.1:*:*:*:*:*:*:*", "matchCriteriaId": "4EA7CD6A-133F-48E4-87BC-77CF21A25940", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.80:*:*:*:*:*:*:*", "matchCriteriaId": "F65A7930-A913-4C3D-95A3-E629D6A468C3", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.80:rc2:*:*:*:*:*:*", "matchCriteriaId": "B4DA6E00-8126-4B62-9E7F-1E3BFC827BDA", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.80:rc3:*:*:*:*:*:*", "matchCriteriaId": "BB0958CD-187F-4DD0-A31B-5002861F6326", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.80:rc4:*:*:*:*:*:*", "matchCriteriaId": "9C24942D-7AD6-4391-8F05-2827AB6A751E", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.81:*:*:*:*:*:*:*", "matchCriteriaId": "DA719FE4-04E0-4664-8EEC-70CD613408DD", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.82:*:*:*:*:*:*:*", "matchCriteriaId": "C859F864-B68F-4805-B804-E50F2C3FFE8E", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.83:*:*:*:*:*:*:*", "matchCriteriaId": "B5CAFEA5-C062-43EA-A302-38887DA6768C", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.84:*:*:*:*:*:*:*", "matchCriteriaId": "525DC218-308C-4A0E-96A7-DC74B8973B62", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.84:rc1:*:*:*:*:*:*", "matchCriteriaId": "A4969C16-F67D-4C30-A537-FE64F4CFC3D0", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.84:rc2:*:*:*:*:*:*", "matchCriteriaId": "B0D72B20-1F61-4499-9ADE-88AF98C3C19C", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.85:*:*:*:*:*:*:*", "matchCriteriaId": "72C71B82-8F84-4855-A138-7E7436788D69", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.85.1:*:*:*:*:*:*:*", "matchCriteriaId": "039341D8-8E2B-4901-BFA6-9CCC46A18C75", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.86:*:*:*:*:*:*:*", "matchCriteriaId": "C048A75E-6587-485C-9F2B-E12BED34FF2E", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.86:rc1:*:*:*:*:*:*", "matchCriteriaId": "97DAD83E-F14F-4B87-B5D8-7BCAD8F446BA", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.86.1:*:*:*:*:*:*:*", "matchCriteriaId": "8EC4D448-DDCD-4C0B-AA84-2D054FCF718C", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.86.2:*:*:*:*:*:*:*", "matchCriteriaId": "5B003639-3228-4AC1-AB46-73481BB5DDA5", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.87:*:*:*:*:*:*:*", "matchCriteriaId": "6D6A495D-F9BB-41B9-A912-670D837EA278", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.87.1:*:*:*:*:*:*:*", "matchCriteriaId": "45F5E6B4-88DD-4426-9FB6-D9009F6B8740", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.88:*:*:*:*:*:*:*", "matchCriteriaId": "DB1EB857-D417-49EB-89FD-04733C872EE9", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.88.1:*:*:*:*:*:*:*", "matchCriteriaId": "5B9D09D6-3EFD-45A6-88C3-199BF3EF9A42", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.88.2:*:*:*:*:*:*:*", "matchCriteriaId": "4551D5ED-6C72-4C9B-A556-491042A6113A", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.88.3:*:*:*:*:*:*:*", "matchCriteriaId": "01859947-09D4-417E-92A4-FA4F1625C60D", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.88.4:*:*:*:*:*:*:*", "matchCriteriaId": "797B7A3B-BAEA-4868-BC3E-CE629FE151F9", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.88.5:*:*:*:*:*:*:*", "matchCriteriaId": "30337B76-E552-431F-B49C-A418E5B851A5", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.88.6:*:*:*:*:*:*:*", "matchCriteriaId": "53027413-3353-4051-88FA-A46859AD747A", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.88.7:*:*:*:*:*:*:*", "matchCriteriaId": "970D5900-7F83-4140-A3E4-FF4E710DBD2E", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.90:*:*:*:*:*:*:*", "matchCriteriaId": "CDDAFCF3-811C-4365-8BBA-E0BB4F67AD2A", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.90:rc1:*:*:*:*:*:*", "matchCriteriaId": "B5180162-81FA-4605-B5B6-E01B312341EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.90:rc1.1:*:*:*:*:*:*", "matchCriteriaId": "A9915D81-4A7C-4B22-86F7-369CF68A0F71", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.90:rc2:*:*:*:*:*:*", "matchCriteriaId": "7F2E0386-6A8E-4416-A4C6-139EB2CAD57D", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.90:rc3:*:*:*:*:*:*", "matchCriteriaId": "613E8544-7B2B-4FC5-AC60-190EC2D8025A", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.90.1:*:*:*:*:*:*:*", "matchCriteriaId": "13E8E7E7-E29A-4539-8D8C-45B9C39B0146", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.90.2:*:*:*:*:*:*:*", "matchCriteriaId": "7681419E-5125-40D6-BE61-57CE9C8F3DB3", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.90.3:*:*:*:*:*:*:*", "matchCriteriaId": "96A13543-D7E2-41D6-8E8E-BE150ECDAA75", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.90.3_p0:*:*:*:*:*:*:*", "matchCriteriaId": "27310591-C883-4929-824A-AE99E7592D3D", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.90.3_p1:*:*:*:*:*:*:*", "matchCriteriaId": "2964A047-0277-4DA4-BDBE-3F5FC3C1F68E", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.91:*:*:*:*:*:*:*", "matchCriteriaId": "E891471A-A0B8-4251-A6D3-60E947A18F70", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.91:rc1:*:*:*:*:*:*", "matchCriteriaId": "1A3340E5-36AF-4BFC-B6E8-13213EA6969F", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.91:rc2:*:*:*:*:*:*", "matchCriteriaId": "0D520BB1-7863-42B2-88D7-23C543A8F13C", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.91.1:*:*:*:*:*:*:*", "matchCriteriaId": "D0E6A5E0-66E0-4EA7-9007-2389179500C8", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.91.2:*:*:*:*:*:*:*", "matchCriteriaId": "ED827D10-C862-4BC7-AB33-06E040DAE161", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.91.2_p0:*:*:*:*:*:*:*", "matchCriteriaId": "51DC9827-D7D1-4D34-AA35-6A7BDB92907D", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.92:*:*:*:*:*:*:*", "matchCriteriaId": "37A3B776-0096-41B7-8D2E-C6F0B4F37458", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.92.1:*:*:*:*:*:*:*", "matchCriteriaId": "B5AAC04C-FFC7-45D8-A29C-6B258CD56489", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.92_p0:*:*:*:*:*:*:*", "matchCriteriaId": "A06278C4-328D-4D14-9BC1-DCA697EC9EDD", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.93:*:*:*:*:*:*:*", "matchCriteriaId": "9A66094D-050A-405E-AB0F-239A39F64E43", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.93.1:*:*:*:*:*:*:*", "matchCriteriaId": "AF14BCBC-8B3C-4F70-93E8-ADB5C992ACE5", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.93.2:*:*:*:*:*:*:*", "matchCriteriaId": "B931BDB2-DBE4-4983-ABFB-86941CDD14F2", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.93.3:*:*:*:*:*:*:*", "matchCriteriaId": "C8FA4A86-C015-4F1F-B565-89410E70D053", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.94:*:*:*:*:*:*:*", "matchCriteriaId": "F874453A-7F9C-4FF2-ACBD-F691FBF3B4DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.94.1:*:*:*:*:*:*:*", "matchCriteriaId": "0722860E-934A-49CA-BEAD-0EB05AA6E4C6", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.94.2:*:*:*:*:*:*:*", "matchCriteriaId": "96F399F4-E7C0-4AD0-AA4F-C7C7FC2C466E", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.95:*:*:*:*:*:*:*", "matchCriteriaId": "1F0BB8C6-F0A3-418F-A457-93A4CC5BB6C6", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.95:rc1:*:*:*:*:*:*", "matchCriteriaId": "65766FB2-392A-4F05-9259-C7B8D6CBDDDB", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.95:rc2:*:*:*:*:*:*", "matchCriteriaId": "4E74A119-A76A-47E5-AC5E-9DF700453B8A", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.95:src1:*:*:*:*:*:*", "matchCriteriaId": "19A73FE2-2D4C-4B47-85C9-F8E3874992B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.95:src2:*:*:*:*:*:*", "matchCriteriaId": "7DB5B3F9-3A02-450D-A6F0-4C640209780B", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.95.1:*:*:*:*:*:*:*", "matchCriteriaId": "3241AA52-40F4-49C0-8C04-08610B729E5E", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.95.2:*:*:*:*:*:*:*", "matchCriteriaId": "0F3C55B1-1C05-4CDB-BFDE-D174F3C0434B", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.95.3:*:*:*:*:*:*:*", "matchCriteriaId": "6F59887C-77E2-4AEA-B7CD-A5A24F926D09", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.96:*:*:*:*:*:*:*", "matchCriteriaId": "CB27B025-3957-4CBB-A985-0B757ECFFBAB", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.96:rc1:*:*:*:*:*:*", "matchCriteriaId": "609BF125-E8A9-4105-9FDE-5FFA9371736F", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.96:rc2:*:*:*:*:*:*", "matchCriteriaId": "A037EC78-25BA-4CDC-8DF2-A7EF74489AEA", "vulnerable": true}, {"criteria": "cpe:2.3:a:clamav:clamav:0.96.1:*:*:*:*:*:*:*", "matchCriteriaId": "1A612F05-2260-4924-AD4A-4502AEFFFEFE", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF document. NOTE: some of these details are obtained from third party information."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en la funci\u00f3n find_stream_bounds en pdf.c en libclamav en ClamAV, en versiones anteriores a la 0.96.3, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda de la aplicaci\u00f3n) o posiblemente ejecutar c\u00f3digo de su elecci\u00f3n mediante un documento PDF manipulado. NOTA: algunos de estos detalles se han obtenido de informaci\u00f3n de terceros."}], "id": "CVE-2010-3434", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2010-09-30T15:00:04.393", "references": [{"source": "secalert@redhat.com", "url": "http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=blob_plain%3Bf=ChangeLog%3Bhb=clamav-0.96.3"}, {"source": "secalert@redhat.com", "url": "http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commit%3Bh=dc5143b4669ae39c79c9af50d569c28c798f33da"}, {"source": "secalert@redhat.com", "url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html"}, {"source": "secalert@redhat.com", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html"}, {"source": "secalert@redhat.com", "url": "http://security-tracker.debian.org/tracker/CVE-2010-3434"}, {"source": "secalert@redhat.com", "url": "http://support.apple.com/kb/HT4581"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2010/09/22/1"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2010/09/27/6"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2010/09/28/3"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2010/09/28/5"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2010/2455"}, {"source": "secalert@redhat.com", "url": "https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2226"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=blob_plain%3Bf=ChangeLog%3Bhb=clamav-0.96.3"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://git.clamav.net/gitweb?p=clamav-devel.git%3Ba=commit%3Bh=dc5143b4669ae39c79c9af50d569c28c798f33da"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00001.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://security-tracker.debian.org/tracker/CVE-2010-3434"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://support.apple.com/kb/HT4581"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2010/09/22/1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2010/09/27/6"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2010/09/28/3"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.openwall.com/lists/oss-security/2010/09/28/5"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2010/2455"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://wwws.clamav.net/bugzilla/show_bug.cgi?id=2226"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}