Denial of service in clamav

Advisory ID CVE Number Date discovered Severity Advisory revision
STORM-2019-027 CVE-2019-15961 11/21/2019 medium v1

Vulnerability details

A Denial-of-Service can occur when a specially crafted email file is analyzed by clamav.

Impacted products

ProductsSeverityDetail
Stormshield Network Security medium SNS is impacted

Revisions

Version Date Description
v1 Initial release


Stormshield Network Security

CVSS v2 Overall Score: 4.2      

Analysis

Impacted version

ClamAV can potentially consume huge amount of resources
  • SNS 3.X
  • SNS 4.X

Workaround solution

Solution

Use Kaspersky antivirus engine as an alternative, or turn ClamAV off.

The SNS 3.7.10, 3.10.1 and 4.0.1 updates will fix this vulnerability.



Access vector Access complexity Authentication Confidentiality impact Integrity impact Availability impact
Network Low None None None Partial
CVSS Base score: 5 CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Remediation Level Report Confidence
Proof of concept code Workaround Confirmed
CVSS Temporal score: 4.2 CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P/E:POC/RL:W/RC:C)
Collateral Damage Potential Target Distribution
None High [76-100%]
CVSS Environmental score: 4.2 CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P/E:POC/RL:W/RC:C/CDP:N/TD:H/CR:ND/IR:ND/AR:ND)