Two serious security vulnerabilities have been identified in Clam AntiVirus, a popular open-source antivirus application. The flaws could be exploited by remote attackers to run malicious software or cause crashes on computers that run the application, according to an advisory from the French Security Incident Response Team, or FrSIRT, which tags the issue "critical."
The vulnerabilities exist in Clam AntiVirus version 0.86.2 and earlier, according to FrSIRT. Clam AntiVirus has been updated to fix the problem, according to the project's Web site. An updated version of ClamWin, the free antivirus application for Windows based on Clam AntiVirus, is also available, according to the ClamWin site.