CVE-2007-0898

EPSS 2.0%

Published: 2/16/2007Modified: 4/28/2026

Description

Directory traversal vulnerability in clamd in Clam AntiVirus ClamAV before 0.90 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the id MIME header parameter in a multi-part message.

Affected packages (1)

Debian/clamavfrom 0, < 0.90-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-0898