CVE-2007-6336

EPSS 9.9%

Published: 12/20/2007Modified: 4/28/2026

Description

Off-by-one error in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MS-ZIP compressed CAB file.

Affected packages (1)

Debian/clamavfrom 0, < 0.92~dfsg-1~volatile2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-6336