Lucene search

[email protected]CVE-2007-1673

HistoryMay 09, 2007 - 1:19 a.m.

CVE-2007-1673

2007-05-0901:19:00

CWE-399

[email protected]

web.nvd.nist.gov

unzoo.c

denial of service

remote attackers

zoo archive

cve-2007-1673

nvd

amavis 2.4.1

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.041 Low

EPSS

Percentile

92.1%

JSON

unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

CPENameOperatorVersion
barracuda_networks:barracuda_spam_firewallbarracuda networks barracuda spam firewalleqmodel_100
avast:avast_antivirus_homeavast avast antivirus homeeq4.7.1098
avast:avast_antivirus_homeavast avast antivirus homeeq4.6.652
avira:antiviravira antivireq7.04.00.23
barracuda_networks:barracuda_spam_firewallbarracuda networks barracuda spam firewalleqmodel_300
avast:avast_antivirus_professionalavast avast antivirus professionaleq4.7.827
avira:antiviravira antivireq6.35.00.00
avast:avast_antivirus_professionalavast avast antivirus professionaleq4.6.652
avira:antivir_personalavira antivir personaleq*
avast:avast_antivirus_professionalavast avast antivirus professionaleq4.6.691

CPE	Name	Operator	Version
barracuda_networks:barracuda_spam_firewall	barracuda networks barracuda spam firewall	eq	model_100
avast:avast_antivirus_home	avast avast antivirus home	eq	4.7.1098
avast:avast_antivirus_home	avast avast antivirus home	eq	4.6.652
avira:antivir	avira antivir	eq	7.04.00.23
barracuda_networks:barracuda_spam_firewall	barracuda networks barracuda spam firewall	eq	model_300
avast:avast_antivirus_professional	avast avast antivirus professional	eq	4.7.827
avira:antivir	avira antivir	eq	6.35.00.00
avast:avast_antivirus_professional	avast avast antivirus professional	eq	4.6.652
avira:antivir_personal	avira antivir personal	eq	*
avast:avast_antivirus_professional	avast avast antivirus professional	eq	4.6.691

Rows per page:

1-10 of 481

References

osvdb.org/36208

secunia.com/advisories/25315

securityreason.com/securityalert/2680

www.amavis.org/security/asa-2007-2.txt

www.securityfocus.com/archive/1/467646/100/0/threaded

www.securityfocus.com/bid/23823

exchange.xforce.ibmcloud.com/vulnerabilities/34080

6.8 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.041 Low

EPSS

Percentile

92.1%

JSON

Related for CVE-2007-1673

prion1 debiancve1 ubuntucve1 securityvulns2