CVE-2005-3500

The tnef_attachment function in tnef.c for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop and memory exhaustion) via a crafted value in a CAB file that causes ClamAV to repeatedly scan the same block.

Date published : 2005-11-05

http://www.securityfocus.com/bid/15316

http://sourceforge.net/project/shownotes.php?release_id=368319