CVE-2018-0361

Summary

ClamAV before 0.100.1 lacks a PDF object length check, resulting in an unreasonably long time to parse a relatively small file.

Affected Software

VendorProductVersion RangeStatus
n/aClamAV before 0.100.1 unknownClamAV before 0.100.1 unknownaffected

Weaknesses

  • unreasonably long time to parse

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References