Clamav scan finds PUA.HTML.Exploit.CVE_2014_0322

Question

I recently did a scan using Clamav, and these were two of the results:

/usr/share/doc/properties-cpp/html/jquery.js: PUA.HTML.Exploit.CVE_2014_0322 FOUND
/usr/share/doc/process-cpp/html/jquery.js: PUA.HTML.Exploit.CVE_2014_0322 FOUND

I have done some further research into what CVE_2014_0322 is, and it seems to be a Zero-Day in IE 9 and 10, however, why has it been detected on my machine? Is this a false positive? If not, do I need to do anything about these files?

OS Information:

Description:    Ubuntu 15.04
Release:    15.04

score 6 · Accepted Answer · answered Jul 15 '15 at 14:21

This one is Windows only; so yes it is a false positive when using a non-Windows system.

This site shows what other scanners show. Only ClamAV complains, all the others do not see a problem. That might be due to ClamAV using a better definition but it was noticed a year ago so that also is a big indicator it is a false positive.

Clamav scan finds PUA.HTML.Exploit.CVE_2014_0322

1 Answers1