Clam AntiVirus is "a multi-platform GPL anti-virus toolkit. ClamAV is often integrated into e-mail gateways and used to scan e-mail traffic for viruses. It supports virus scanning for a wide variety of packed Portable Executable (PE) binaries. PeSpin is one of the supported packer/protectors". Remote exploitation of a heap overflow vulnerability in Clam AntiVirus' ClamAV, as included in various vendors' operating system distributions, allows attackers to execute arbitrary code with the privileges of the affected process.

http://www.securiteam.com/securitynews/5LP0D1PO0Q.html