PublicDate: 2007-08-23 19:17:00 UTC
Candidate: CVE-2007-4510
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4510
Description:
 ClamAV before 0.91.2, as used in Kolab Server 2.0 through 2.2beta1 and
 other products, allows remote attackers to cause a denial of service
 (application crash) via (1) a crafted RTF file, which triggers a NULL
 dereference in the cli_scanrtf function in libclamav/rtf.c; or (2) a
 crafted HTML document with a data: URI, which triggers a NULL dereference
 in the cli_html_normalise function in libclamav/htmlnorm.c.  NOTE: some of
 these details are obtained from third party information.
Ubuntu-Description: 
Notes: 
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs: 

upstream_clamav: released (0.91.2)
dapper_clamav: released (0.92.1~dfsg2-1.1~dapper2)
edgy_clamav: needed (reached end-of-life)
feisty_clamav: released (0.90.2-0ubuntu1.4)
gutsy_clamav: not-affected
hardy_clamav: not-affected
devel_clamav: not-affected