Advisory from Moritz Jodeit, November 8th, 2008:
ClamAV contains an off-by-one heap overflow vulnerability
in the code responsible for parsing VBA project files.
Successful exploitation could allow an attacker to execute
arbitrary code with the privileges of the `clamd' process by
sending an email with a prepared attachment.
A VBA project file embedded inside an OLE2 office document
send as an attachment can trigger the off-by-one.
Entry from Thu Oct 30 13:52:42 CET 2008 (acab) in ChangeLog:
libclamav/vba_extract.c: get_unicode_name off-by-one,
bb#1239 reported by Moritz Jodeit >moritz*jodeit.org<