Flaw fixed in open-source antivirus program

Clam, maker of the open-source security program Clam AntiVirus, released an update Monday designed to address a security flaw. The vulnerability could be exploited to create a heap-based buffer overflow, which could lead to a malicious attacker launching a denial of service attack, according to security company Secunia, which A representative of the SANS Institute's Internet Storm Center said many people run Clam AntiVirus on mail servers and advised e-mail administrators to update to the latest version, 0.86.2.