CVE-2011-1003

Double free vulnerability in the vba_read_project_strings function in vba_extract.c in libclamav in ClamAV before 0.97 might allow remote attackers to execute arbitrary code via crafted Visual Basic for Applications (VBA) data in a Microsoft Office document.  NOTE: some of these details are obtained from third party information.
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:P/I:P/A:P
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
clamavclamav
𝑥
≤ 0.96.5
clamavclamav
0.01
clamavclamav
0.02
clamavclamav
0.3
clamavclamav
0.03
clamavclamav
0.05
clamavclamav
0.8
clamavclamav
0.9
clamavclamav
0.10
clamavclamav
0.12
clamavclamav
0.13
clamavclamav
0.14
clamavclamav
0.14
clamavclamav
0.15
clamavclamav
0.20
clamavclamav
0.21
clamavclamav
0.22
clamavclamav
0.23
clamavclamav
0.24
clamavclamav
0.51
clamavclamav
0.52
clamavclamav
0.53
clamavclamav
0.54
clamavclamav
0.60
clamavclamav
0.60p
clamavclamav
0.65
clamavclamav
0.66
clamavclamav
0.67
clamavclamav
0.67-1
clamavclamav
0.68
clamavclamav
0.68.1
clamavclamav
0.70
clamavclamav
0.70
clamavclamav
0.71
clamavclamav
0.72
clamavclamav
0.73
clamavclamav
0.74
clamavclamav
0.75
clamavclamav
0.75.1
clamavclamav
0.80
clamavclamav
0.80
clamavclamav
0.80
clamavclamav
0.80
clamavclamav
0.80
clamavclamav
0.80
clamavclamav
0.80_rc
clamavclamav
0.81
clamavclamav
0.81
clamavclamav
0.82
clamavclamav
0.83
clamavclamav
0.84
clamavclamav
0.84
clamavclamav
0.84
clamavclamav
0.85
clamavclamav
0.85.1
clamavclamav
0.86
clamavclamav
0.86
clamavclamav
0.86.1
clamavclamav
0.86.2
clamavclamav
0.87
clamavclamav
0.87.1
clamavclamav
0.88
clamavclamav
0.88.1
clamavclamav
0.88.2
clamavclamav
0.88.3
clamavclamav
0.88.4
clamavclamav
0.88.5
clamavclamav
0.88.6
clamavclamav
0.88.7
clamavclamav
0.88.7_p0
clamavclamav
0.88.7_p1
clamavclamav
0.90
clamavclamav
0.90
clamavclamav
0.90
clamavclamav
0.90
clamavclamav
0.90
clamavclamav
0.90.1
clamavclamav
0.90.1_p0
clamavclamav
0.90.2
clamavclamav
0.90.2_p0
clamavclamav
0.90.3
clamavclamav
0.90.3_p0
clamavclamav
0.90.3_p1
clamavclamav
0.91
clamavclamav
0.91
clamavclamav
0.91
clamavclamav
0.91.1
clamavclamav
0.91.2
clamavclamav
0.91.2_p0
clamavclamav
0.92
clamavclamav
0.92.1
clamavclamav
0.92_p0
clamavclamav
0.93
clamavclamav
0.93.1
clamavclamav
0.93.2
clamavclamav
0.93.3
clamavclamav
0.94
clamavclamav
0.94.1
clamavclamav
0.94.2
clamavclamav
0.95
clamavclamav
0.95
clamavclamav
0.95
clamavclamav
0.95
clamavclamav
0.95
clamavclamav
0.95.1
clamavclamav
0.95.2
clamavclamav
0.95.3
clamavclamav
0.96
clamavclamav
0.96
clamavclamav
0.96
clamavclamav
0.96.1
clamavclamav
0.96.2
clamavclamav
0.96.3
clamavclamav
0.96.4
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
clamav
bullseye
0.103.10+dfsg-0+deb11u1
fixed
bookworm
1.0.5+dfsg-1~deb12u1
fixed
sid
1.4.1+dfsg-1
fixed
trixie
1.4.1+dfsg-1
fixed
Common Weakness Enumeration