Flaw fixed in open-source antivirus program

Filed under

Clam, maker of the open-source security program Clam AntiVirus, released an update Monday designed to address a security flaw. The vulnerability could be exploited to create a heap-based buffer overflow, which could lead to a malicious attacker launching a denial of service attack, according to security company Secunia, which rated the flaw "critical." A representative of the SANS Institute's Internet Storm Center said many people run Clam AntiVirus on mail servers and advised e-mail administrators to update to the latest version, 0.86.2.