Unrated severityNVD Advisory· Published Dec 10, 2006· Updated Jun 16, 2026

CVE-2006-6406

Description

Clam AntiVirus (ClamAV) 0.88.6 allows remote attackers to bypass virus detection by inserting invalid characters into base64 encoded content in a multipart/mixed MIME file, as demonstrated with the EICAR test file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

ClamAV/Clamav2 versions
cpe:2.3:a:clam_anti-virus:clamav:0.88.6:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:clam_anti-virus:clamav:0.88.6:*:*:*:*:*:*:*
- (no CPE)range: = 0.88.6

Patches

Vulnerability mechanics

References

www.quantenblog.net/security/virus-scanner-bypassnvdExploitVendor Advisory
kolab.org/security/kolab-vendor-notice-14.txtnvd
secunia.com/advisories/23362nvd
secunia.com/advisories/23379nvd
secunia.com/advisories/23411nvd
secunia.com/advisories/23460nvd
www.debian.org/security/2006/dsa-1238nvd
www.mandriva.com/security/advisoriesnvd
www.novell.com/linux/security/advisories/2006_78_clamav.htmlnvd
www.securityfocus.com/archive/1/453654/100/0/threadednvd
www.securityfocus.com/bid/21461nvd
www.vupen.com/english/advisories/2006/4948nvd
www.vupen.com/english/advisories/2006/5113nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000