Loading
Generated remediation guidance and an executive summary. No account required.
ClamAV 0.92 allows local users to overwrite arbitrary files via a symlink attack on (1) temporary files used by the cli_gentempfd function in libclamav/others.c or on (2) .ascii files used by sigtool, when utf16-decode is enabled.
Use CWE-59, Clam Anti-Virus vendor hub and Clamav product page to widen CVE-2007-6595 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2008-1100, CVE-2008-5050 and CVE-2008-1833 for nearby disclosures in the same product family.