CVE-2005-1923
EPSS 0.66%Published: 7/5/2005Modified: 4/28/2026
Description
The ENSURE_BITS macro in mszipd.c for Clam AntiVirus (ClamAV) 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service (CPU consumption by infinite loop) via a cabinet (CAB) file with the cffile_FolderOffset field set to 0xff, which causes a zero-length read.
Affected packages (1)
- Debian/clamavfrom 0, < 0.86.1