Lucene search
HistoryMar 06, 2007 - 1:19 a.m.
CVE-2007-1281
kaspersky
antivirus
engine
cpu consumption
upx
compressed file
denial of service
cve-2007-1281
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
6.5 Medium
AI Score
Confidence
High
0.021 Low
EPSS
Percentile
89.4%
Kaspersky AntiVirus Engine 6.0.1.411 for Windows and 5.5-10 for Linux allows remote attackers to cause a denial of service (CPU consumption) via a crafted UPX compressed file with a negative offset, which triggers an infinite loop during decompression.
Affected configurations
Node
microsoftall_windowsMatchabstract_cpe
kaspersky_labkaspersky_antivirus_engineMatch6.0.1.411
Node
linuxlinux_kernelia32_64-bit
kaspersky_labkaspersky_antivirus_engineMatch5.5.10
| CPE | Name | Operator | Version |
|---|---|---|---|
| kaspersky_lab:kaspersky_antivirus_engine | kaspersky lab kaspersky antivirus engine | eq | 6.0.1.411 |
References
Social References
More
Related
nessus
nessus
Kaspersky Anti-Virus UPX File Decompression DoS
2007-03-05 00:00:00
openvas
openvas
Kaspersky Antivirus UPX Denial of Service vulnerability
2010-07-08 00:00:00
Kaspersky Antivirus UPX Denial of Service vulnerability
2010-07-08 00:00:00
securityvulns
securityvulns
Kaspersky Antivirus DoS
2007-03-02 00:00:00
cvelist
cvelist
CVE-2007-1281
2007-03-06 01:00:00
prion
prion
Design/Logic Flaw
2007-03-06 01:19:00
nvd
nvd
CVE-2007-1281
2007-03-06 01:19:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
6.5 Medium
AI Score
Confidence
High
0.021 Low
EPSS
Percentile
89.4%
Related for CVE-2007-1281