Instead, it lets you isolate and delete the assorted viruses, malware, and trojans that could be causing your Mac to behave erratically.
It's there when it needs to be, its application and virus definition update functions work like a dream, and after having to remove an unresponsive 2009 copy of Norton Antivirus out of a client's MacBook Pro using a shell script located on the Symantec website, one can appreciate the effort that goes into its steady upkeep.ĬlamXav doesn't promise to police your downloads, act as a firewall, keep your kids from adult content, or solve all your problems. Unlike offerings like Symantec's recent anti-virus and security suites, ClamXav doesn't try to be ever-present and continuously monitor your system functions. What makes ClamXav truly shine is its support base, as well as the fact that it doesn't try to be overbearing within the OS X operating system, nor does it try to function without your permission and solve all your problems. It's simple to schedule scans or add a flash drive or external hard disk to the device list to scan later. The scan process, in turn, can be paused and resumed at your leisure (something which is definitely appreciated in the case of multi-terabyte hard drives), and infected files can be quarantined and/or deleted outright on the fly. The program allows you to put infected files aside in a specified quarantine location, then tear them and delete them as you see fit following the scan. If there are files that are infected on your Mac, ClamXav will find them, provide you with a description as to what the infected file can possibly do to your computer, and give you tools to deal with them.ĬlamXav's two-pronged approach helps it do as well a job as it does. Lovingly developed and religiously updated by the group of open source developers responsible for the cross-platform ClamAV anti-malware application, ClamXav won't actively scan incoming downloaded files the way commercial anti-malware suites will, but it does a great job of combing through your user account, your hard drive, or more specific folders as needed.
This is where ClamXav 2, a free application developed by Sourcefire VRT, becomes the greatest thing ever. Along with well-publicized vulnerabilities that have been exploited such as Flash Player and Java, OS X is still vulnerable to a variety of malware that can make life interesting for both you and your clients. Upgrading to version 3.1.1 eliminates this vulnerability.ĬVSSv3 info edit VulDB Meta Base Score: 6.As much as you might want to believe that your Mac is nigh on invulnerable to viruses, trojans, malware and phishing-based attacks, this simply isn't the case.
Neither technical details nor an exploit are publicly available. Required for exploitation is a authentication. Access to the local network is required for this attack to succeed. This vulnerability is uniquely identified as CVE-2020-26893 since.
This occurs because of inadequate client verification in the helper tool. A malicious actor could use a properly signed copy of ClamXAV 2 (running with an injected malicious dylib) to communicate with ClamXAV 3's helper tool and perform privileged operations. The summary by CVE is:Īn issue was discovered in ClamXAV 3 before 3.1.1. This is going to have an impact on confidentiality, integrity, and availability. The manipulation with an unknown input leads to a privilege escalation vulnerability. This affects some unknown processing of the component Helper Tool. A high score indicates an elevated risk to be targeted for this vulnerability.Ī vulnerability, which was classified as critical, was found in ClamXAV up to 3.1.0. The CTI Interest Score identifies the interest of attackers and the security community for this specific vulnerability in real-time. Our Cyber Threat Intelligence team is monitoring different web sites, mailing lists, exploit markets and social media networks.