CVE-2008-1387
ClamAV before 0.93 allows remote attackers to cause a denial of service (CPU consumption) via a crafted ARJ archive, as demonstrated by the PROTOS GENOME test suite for Archive Formats.
Date published : 2008-04-16
http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html