I am running Tiger 10.4.11 and SL 10.6.8 and found the same issue on a pretty fresh SL install. Several of the "exploits" were bonified applications like Lightroom and MS Office support.
Filename Infection Name Status
/Applications/Adobe Photoshop Lightroom 4.app Php.Exploit.CVE_2015_2331-3
/Applications/Adobe Photoshop Lightroom 4.app/Contents/Support/DynamicLinkMediaServer/application/dynamiclinkmediaserve r.app Php.Exploit.CVE_2015_2331-3
/Applications/Microsoft Office 2008/Office/MicrosoftOffice.framework Php.Exploit.CVE_2015_2331-3
/Library/QuickLook/iWork.qlgenerator Php.Exploit.CVE_2015_2331-3
/Library/QuickLook/SneakPeek Pro.qlgenerator Php.Exploit.CVE_2015_2331-3
/Library/Spotlight/iWork.mdimporter Php.Exploit.CVE_2015_2331-3
/Library/Spotlight/Microsoft Office.mdimporter Php.Exploit.CVE_2015_2331-3
/System/Library/Frameworks/Foundation.framework/Versions/C/Foundation Php.Exploit.CVE_2015_2331-3
/System/Library/PrivateFrameworks/Bom.framework/Versions/A/Bom Php.Exploit.CVE_2015_2331-3
/usr/bin/pkgbuild Php.Exploit.CVE_2015_2331-3
/usr/bin/productbuild Php.Exploit.CVE_2015_2331-3
/usr/bin/productsign Php.Exploit.CVE_2015_2331-3
/usr/bin/zip Php.Exploit.CVE_2015_2331-3
/usr/bin/zipcloak Php.Exploit.CVE_2015_2331-3
/usr/bin/zipnote Php.Exploit.CVE_2015_2331-3
/usr/bin/zipsplit Php.Exploit.CVE_2015_2331-3
/usr/libexec/productutil Php.Exploit.CVE_2015_2331-3
All this just after I updated ClamXav. I will send a message to their support. I am thinking this is a bug in the scan software. If you find anything else out in the mean time, please post back.
John