CVE-2007-6335
Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.
Date published : 2007-12-19
http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html